Warning about php_auth.php when activating WAF
-
When activating the new Wordfence firewall on a customer’s blog, I see this warning:
The Wordfence Web Application Firewall is designed to run via a PHP ini setting called auto_prepend_file in order to ensure it runs before any potentially vulnerable code runs. This PHP setting is currently in use, and is including this file:
/www/cgi-system/php_auth.php
If you don’t recognize this file, please contact us on the WordPress support forums before proceeding.
Curiously, that directory doesn’t exist on the server. I can only see a /cgi-bin/
What should be done in these cases?
- The topic ‘Warning about php_auth.php when activating WAF’ is closed to new replies.
