large file blocking

  • Resolved stevebrett

    (@stevebrett)


    9 months ago

    Hi I have a client that accepts large files (upwards of 400-500 Mb or larger for processing through a gravity forms form. We recently determined that the largest of these appear to get blocked by a wordfence firewall rule, I turned off the abvious one “Malicious File Upload” however that didnt resolve the issue. Can any one help me determine which rules or recomend other rules to turn of that will resolve this issue for them.

    BTW we have determined its not a php setting at the host. We turn off wordfence and large test files upload fine

    Thanks

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support wfmark

    (@wfmark)

    Hi @stevebrett, Thank you for reaching out.

    Wordfence has three rules that check for unsanitized files containing malicious code that can be uploaded to and executed by the web server. The rules are  “Malicious File Upload“, “Malicious File Upload (PHP)“, or “Malicious File Upload (Patterns)” and can be found in Wordfence > All Options > Firewall Options > Advanced Firewall Options > Rules after expanding the list.

    There have been occasions when customers needed to disable one of these to prevent false positives. There are layers to how uploaded files are checked, so having to turn one of these rules off to fix any issues should still ensure malicious files are caught at a different stage of the checking process. Disabling/enabling them one by one can reveal exactly which one(s) can be permanently turned off to prevent any upload issues from reoccurring for your users.

    I hope this is helpful.

    Thanks,

    Mark.

    Thread Starter stevebrett

    (@stevebrett)

    MArk thanks so much thats very helpful- Well do some more testing today

    Plugin Support wfmark

    (@wfmark)

    You’re welcome @stevebrett.

    Let me know if you need any further assistance.

    Thanks,

    Mark.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘large file blocking’ is closed to new replies.