binaryfabric

I will try and look into that. Thank you!

Hi,

I don’t feel comfortable sharing that information publicly, is there a place where I can share it privately?

Also, I am the dev. I built all the security measures that are currently in place and they have been working. As stated above i was able to hook into woocommerce_checkout_process for verification purposes.

However, now that blocks are enabled, I’m not even sure how, I need a new method. I’ve tried searching the docs for new hooks, but was unable to find any solutions which is why I came here.

Thanks

• This reply was modified 2 months, 3 weeks ago by binaryfabric.

Also I dont know why it was marked resolved. My issue has not been resolved.

Any chance the is an option to have them execute sequentially. It seems as though when they all run at the same time the plugin gets stuck in a processing loop.

My initial issue was thinking that the plugin was doing the redirect, I guess that it wrong I just saw this in the code since http/https and www/non-www are now handled in one line. I thought maybe there was some redirection happening.

Maybe using the htaccess to redirect would be the quickest way to solve this. I just thought Id find the underlying issue.

Ill try it out.

There must be a better way to stop spam bots from using my site as their CC testing site.

Anyways, thanks for your help.

Hey @wfmark thanks for the help.

Currently the reCAPTCHA human/bot threshold score is 0.9
We find this to be pretty good, in our case better safe then sorry, but upon your recommendation, maybe we will lower it.

In reference to the rate limiting, I just implemented those changes. I hope they help, although recently our attacks have been coming from different IPs

It regards to the 2FA & reCAPTCHA. Do you know if the plugin works on the checkout form when a customer creates an account during the checkout process? It is important to know if the perpetrators are using existing accounts or are just brute-forcing the account creation + checkout

Thanks again

Any help with this? I really just trying to understand the intended functionality of ReCaptcha with the Wordfence plugin.

This worked for me.

Hi,

Thanks for using our plugin and reaching out to us.

Can you try enabling this general plugin setting?
https://www.dropbox.com/s/wgccawf1a76uc0a/AttributesBasic.png?dl=0

Hope this makes a difference?

So I just wanted to update… Maybe this is 1. A Bug or 2. An issue on my end.

When I add the sub-domain www to WP_HOME & WP_SITEURL the loopbacks work.

Loopback request: The loopback request to your site completed successfully.

This isn’t necessarily a huge problem if I need to leave it like this, but any idea on where I can go from here?

Maybe something in my Route 53 Settings?

Do you guys know what the URL for the loopback request is?
Does it happen on a certain port, does it happen on HTTP or HTTPS.

I would like to debug the issue a little bit, before I open up a support request.

Also on this specific server config, i do not have a load balancer setup, weird that you see that.

Thank you,

• This reply was modified 6 years, 9 months ago by binaryfabric.