a9fc

got it, looking forward to it

just an fyi for multisiters.

I had a similar problem when I converted an existing wp installation to a multisite setup.

Reactivated all the required plugins, and got the same error msg.

Used James’ method to force a deactivate on all plugins, then reactivated them 1 by 1 to find the culprit.

Had to apply the method again once the culprit is found, naturally.

saved me bacon lol, thanks James.

noted, thanks.

I added an exclusion to the code to allow this to pass through

RewriteCond %{QUERY_STRING} !^wordfence_logHuman= [NC]

hope this helps

I see, apologies for my ignorance, thanks for your patience.

Btw, the problem I have is here. If you have the time and you’re familiar with the issue, could you point me in the right direction?

If not, then it’s ok, and again, thx for your time =)

I was reading another post and I probably misunderstood or miused the word scripts lol

I’m assuming this can be used to block those incoming spam links?

ok

for those of you who stumbled in here:

If you’re getting hit by spam links with /? (start of a ‘query string’) in them, like zyx.com/?spam-bull-rubbish/, they’ll automatically redirect to your main page, even though you’ve cleaned your site and the hacked content no longer exist. Something to do with settings permalinks to using titles I think.

So I’ve been advised to use .htaccess to prevent that from happening. I’ve got 2 codes with pros and cons. They both work by throwing the incoming spam links as a 404, as it should be. Note, in my case, it shows my servers 404, not my theme’s. Put them at the top of your .htaccess file.

This is the first one:

# Start query string abuse protection
RewriteEngine on
RewriteCond %{QUERY_STRING} .
RewriteRule ^/?$ - [L,R=404]
# End

The problem with this is that post and page previews will also go to a 404. That, and some other things might not work. A dropdown menu in a theme I use stopped working.

The 2nd code:

# Start query string abuse protection
<IfModule mod_rewrite.c>
RewriteCond %{QUERY_STRING} ^[\-/A-Z0-9]+$ [NC]
RewriteRule (.*) - [R=404]
</IfModule>
# End

This one allows page/post previews. Forgot to check if the dropdown menus will work. The problem with this one is that wordpress’ visual editor will stop working.

So yea, that’s all I have for now. Still looking for a more permanent solution.

Figured a problem. It was a .htaccess command that I’m using to deflect incoming query string based spam.

created another post for that, thanks esmi.

No, that’s not how it was set up.

Anyway it’s ok, I had help with this already, thanks for your time though.

incoming links were query string links (zyx.com/?spam-bull-rubbish/), so they’d automatically go to the homepage if the links don’t exist.

I see,

I believe we’re all gonna have to move to https going forward, so could you kindly elaborate a bit about those complexities?

so just to confirm again, with folders, I can still map to specific domains/subdomains? could you also talk a little bit about the increased flexibility from using folders?

if that’s that case, why would anyone use subdomains as the underlying structure? I’ve read the before you start guide and I can’t seem to pull out the pros and cons of using either from there

thanks for your patience =)

example fourhourbodysupplies.com/?Vintage-Gitars/

I understand the spike, my concern is more about my own site. Why is it still displaying the main page even though the above link shouldn’t exist?

something to do with the ‘?’ ?

admins, if you see this, kindly delete the thread please. I’ve adjusted my plan and asked new questions, and created a new thread accordingly

Also, are there inherent advantages between folder/subdomain options?

I’ve got 3 sites I’d like to consolidate into 1 wordpress installation and I’m looking at the ‘www’ thing too.

I’d rather keep it of course, but what risks are involved in leaving it on?

sorry, the page where the plugin is working is the main page here