Sucuri won't stop emailing me "Sucuri Alerts"

@upmarket7 when you say “I can not do any of the blue link actions” which includes the modification of the plugin’ settings, I assume that your website is part of a WordPress network installation; the plugin was intentionally programmed to not work in a multisite because there are some incompatibilities. Try to install the development version of the plugin [1], it has new code that may or may not address this issue already, if not please wait until the next version is release, I will work on this issue now.

[1] https://github.com/Sucuri/sucuri-wordpress-plugin

I hope you solved the problem. I just deleted the plugin as it was flooding my Mail-Box with a dosen alerts/day – amd i just misstiped once, a month ago ??

Note that it is not a multisite, just a simple small one-page site:
https://firmastart.de

Thank you for taking the time and developing this grat plugin.

I’m also having this issue with Sucuri Scanner on a Multisite install even when using the version of the plugin from GitHub.

As a possible fix, I copied the options from the main site’s options (since that’s the only spot the email settings were stored) over to the other tables for the other sites in the network. Too early to tell if that’ll fix it, but I can’t understand why the other sites wouldn’t be following the main site’s settings when network activated.

Hi Yorman
I did have major issues with Sucuri plug in with a horrendous number of notifications landing in my email every day on 2 of my sites and when this started, these notifications seemed to stop me from logging in.
However, I did manage to login on both sites and deactivated this plug in immediately and guess what, no more notifications.
This was the free version of the Sucuri plugin and I have replaced this with a suitable alternative. I had to do this, because all these reminders were driving me nuts. Maybe this is of some help to others in a similar situation.
John

So what if this plugin is just sending fake ‘login attempts’ so you buy their $9.99 monthly firewall……

I ended up needing to copy the settings in the database table for the primary site (where it saves that notifications have been disabled/changed from default) over to all of the options table for each/all of the sites on the network. This did the trick… too bad I had to do direct database alterations to accommodate for this scenario.

@elza: Shoot the messenger.

This plugin gives you security visibility to what is happening to your WordPress site. Every site gets attacked every single day, from comment spam, to brute force, SQL injections and DDoS. However, due to the lack of visibility most people are unaware of that. Visibility brings that to light, but won’t stop the malicious activity.

If you are using this plugin without any other security protection, it will be noisy. In fact, I recommend deleting the plugin if you are using it without any other security in place. Security requires multiple layers and visibility alone for someone that doesn’t covers the other layers will likely be more noisy than useful.

However, when you are taking security seriously and you have protection in place, with things like:

-IP Address White listing on wp-login/wp-admin.

-A real Website Firewall running before WordPress (like the open source ModSecurity or Sucuri’s own Firewall)

-You have spam protection on wp-comments and 2fa on wp-login.

Than the plugin becomes a very powerful addition to your security stack, allowing you to respond very fast in case of an issue and know what is going on.

all those warnings give an IP address
when you look at the whois, they are all from webhosting companies

so, what if all websites that use this plugin ‘ping’ other websites that have this plugin too, and tada there is another ‘failed login alert’.

But thankfully there is help in the form of upgrading your plugin and pay $10 a month.

Smart, very smart….

@elza: The plugin code is all open source. Do some research and look at the code and you will see it does nothing of that.

That’s the beauty of open source, anyone can see what it is doing. In fact, you are free to fix whatever you don’t like and share with everyone else. Even send a PR so we can merge if you are inclined.

But the real benefit of open source is that silly accusations like yours can be easily proven as wrong and false by anyone that looks at it. Nobody can hide anything there.

thanks,

Here it says it’s commercial
https://alternativeto.net/software/sucuri-web-based-integrity-monitoring/?license=free
if it’s open source, why is there a pricing table on your website?

anyway, it’s distracting from the question above, it won’t stop sending emails. The emails are annoying and can’t be put of.

Elza, it is open source. You can look at the source here: https://github.com/Sucuri/sucuri-wordpress-plugin

They do have a paid firewall service (which is what that alternativeto site is talking about) you can opt to add to your site(s), but the free version has its source fully accessible and patch-capable (per the link above). I personally just use the free version as I have an alternate to that aspect of security on my servers, but see real value in what the free plug-in provides (hardening, core integrity checks, activity logging & reports, etc.)

They aren’t sending “fake” messages since something real within the site would need to happen to trigger the notifications. That said, multisite alerts have a bit of a bug, from what I can tell, when you first have it not network activated & then make it network activated. I mentioned how I fixed the problem you’re talking about in my previous response. You need to copy the sucuri setting entries from your main site’s options table which disables notifications over to the other sites’ options tables that you don’t want to receive notifications for. It is then fixed for your site(s).

Hi @elza

There is a fundamental difference between the FREE WordPress security plugin offered, and the services offered by Sucuri via our SaaS product offerings.

The SaaS product offering provides a website owner comprehensive security via our security stack, or protection only services specifically via our Firewall. Sucuri is not a plugin company, we are a security company that has developed and released a security plugin for the WP ecosystem.

The plugin doesn’t arbitrarily send emails, they’re sent when they’re triggered by an action. Just because you don’t want to see the emails, doesn’t mean you don’t have a problem.

The plugin provides you visibility into what is happening, that’s it’s purpose. If you prefer, don’t hesitate to use any other of the number of plugins out there. here is an article I wrote specifically talking to the myriad of options available to you: https://blog.sucuri.net/2014/09/understanding-the-wordpress-security-plugin-ecosystem.html

Your accusations however are unfounded. If you honestly feel the way you do, please remove it and move on, or disable the notifications. Also, just because an IP resolves to a host doesn’t mean the attack is not happening.

Thanks

Hello everyone, first of all I want to thank you all for your patience and specially @kzeni for his suggestions to go around this bug that is affecting all network installations.

I have submitted a significant modification to the repository to address this issue once and for all. If anyone is interested the technical details are here [1]. We will start the testing process and I will release a new version of the plugin with these improvements as soon as possible.

It is worth to note that this modification not only fixes the problems with the multisites, but will also allow us to implement a feature that some people have asked in the past: “Export and Import Settings”. And since the plugin will not be touching the database as much as the current (old) code we can focus our efforts to make the scanners faster because the latency with the access of the MyISAM in most WordPress installations will not get in the way anymore.

If you want to test the new code from now you can download the dev archive from here [2] but be aware that at this point, even with all the new tests, you should consider this an alpha version, do not install it in a production site yet. If you find new bugs please report them in a new thread because as of now this one will be considered resolved.

[1] https://github.com/Sucuri/sucuri-wordpress-plugin/pull/8
[2] https://github.com/cixtor/sucuri-wordpress-plugin/archive/master.zip