No blocks are currently active

  • Resolved fcovecino

    (@fcovecino)


    5 years, 10 months ago

    Hello,

    I have some registered hack attempts at my site, I have configured “How long is an IP address blocked when it breaks a rule” to 1 day, but I get repeated attempts from the same IP during the day and the blocks list show “No blocks are currently active”.

    The firewall is not optimized (I’m at Sitegroud and get errors when I try to)… is that the reason IPs are not being blocked? I can’t find that as a requirement in the WordFence docs.

    Thanks in advance for the help

    The page I need help with: [log in to see the link]

Viewing 9 replies - 1 through 9 (of 9 total)

  • Hey @fcovecino,

    The Firewall does need to be Optimized before it can start blocking the IPs. Take a look at the Real-Time IP Blacklist portion of this page – https://www.wordfence.com/help/firewall/options/.

    What errors are you getting with SiteGround? Have you seen this article?

    https://www.wordfence.com/help/firewall/optimizing-the-firewall/#on-siteground-and-other-similar-hosts-that-use-cpanel

    Please let me know.

    Thanks,

    Gerroald

    Thread Starter fcovecino

    (@fcovecino)

    Thanks for the response… yes, that’s exactly the article I’m following, but I get “Argument #2 is not an array in /…/wp-includes/load.php on line 66” (three points included by me so I don’t publish the actual path). I don’t find any way to eliminate that error, it happens as soon as I setup the variable in the php.ini file. I actually have to delete the php.ini file to get the site back online.

    Hey @fcovecino,

    Can you edit your php.ini file and add this line:

    auto_globals_jit = off

    You can also do this by going into cPanel -> PHP Variables.

    Please give this a try and let me know if it helps.

    Thanks,

    Gerroald

    Thread Starter fcovecino

    (@fcovecino)

    Hello,

    It worked! Now the firewall appears optimized and no errors.
    Why is that it works?

    Thanks

    Thread Starter fcovecino

    (@fcovecino)

    Hello,
    Even if I could optimize the firewall without error by adding the additional variable, I got 17 hack attempts from a single IP address and the IP wasn’t blocked… Wordfence also keeps showing in the “today” row of hack attempts some that happened more than 24hrs ago.
    Anything else I need to configure in Siteground? Maybe there are some of the SG Optimized plugin settings getting on the way? Any of the caching settings?
    Again thanks for the assistance.

    Hey @fcovecino,

    On SiteGround servers, it appears they have auto_globals_jit enabled by default – this causes certain variables within $_SERVER to be undefined because it’s loaded later into the array (which happens after Wordfence). Setting it to off allows Wordfence to run before the code loads which the Firewall needs enable to do its job.

    Thanks,

    Gerroald

    Thread Starter fcovecino

    (@fcovecino)

    Thanks for the information, do you have guidance for my latest message?

    “Even if I could optimize the firewall without error by adding the additional variable, I got 17 hack attempts from a single IP address and the IP wasn’t blocked… Wordfence also keeps showing in the “today” row of hack attempts some that happened more than 24hrs ago.
    Anything else I need to configure in Siteground? Maybe there are some of the SG Optimized plugin settings getting on the way? Any of the caching settings?”

    Again thanks for the assistance.

    Thread Starter fcovecino

    (@fcovecino)

    Hello,

    The old hack attempts went away now from the “today” statistics, will confirm if new attemtps produce IP blocks.

    Best regards,

    Thread Starter fcovecino

    (@fcovecino)

    Hello,

    I can confirm that everything is workiing right now, thanks for the assistance.

Viewing 9 replies - 1 through 9 (of 9 total)
  • The topic ‘No blocks are currently active’ is closed to new replies.