Forum Replies Created

Viewing 10 replies - 1 through 10 (of 10 total)
  • Thread Starter neuralnet

    (@neuralnet)

    Yes, that makes perfect sense. I forget that the scanning is not server side!

    All good now & will be when the new site goes live. Thanks.

    id               => 2320
    module           => site-scanner
    type             => notice
    code             => clean
    timestamp        => 2024-03-06 10:19:25
    init_timestamp   => 2024-03-06 10:19:23
    remote_ip        => 90.250.11.44
    user_id          => 1883
    url              => https://staging.worldinsport.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user
    memory_current   => 9628984
    memory_peak      => 9713680
    data             => Array
        results   => Array
            url       => https://staging.worldinsport.com
            version   => 1.1
            entries   => Array
                blacklist         => Array
                    0   => Array
                        report_details   => https://transparencyreport.google.com/safe-browsing/search?url=staging.worldinsport.com
                        status           => clean
                        vendor           => Array
                            slug    => google
                            label   => Google Safe Browsing
                vulnerabilities   => Array()
            errors    => Array()
        cached    => [boolean] false
    Thread Starter neuralnet

    (@neuralnet)

    Hi there @shanedelierrr, thanks for the assistance. Yes, I can confirm that Solid Security is now scanning properly. Clearing caches etc didn’t make a difference and the IP wasn’t blocked. There wasn’t a conflict and running the plugin on it’s own didn’t change things. I had to do a full reinstall, replacing the plugin files wasn’t sufficient.. but now we’re in business.

    FYI the experience I had earlier confirmed to me that it actually wasn’t scanning before, despite saying that it had in the logs. The ‘scan’ previously ‘completed’ in under a second. Now it’s actually scanning it takes around 10-15s to complete.

    Thanks!

    • This reply was modified 1 year, 3 months ago by neuralnet.
    Thread Starter neuralnet

    (@neuralnet)

    The plugin was installed via the wordpress site, so we didn’t upload a .zip. Here are the logs generated during scans. I’ve changed the website address and the IP address requesting the scan, otherwise it’s as-is. Please let me know if you need any more.

    Thanks!

    0,site-scanner,scan,"a:1:{s:7:""site_id"";i:0;}",process-start,"2023-12-04 09:14:56","2023-12-04 09:14:55",35584136,35724968,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
    1701681296.0094,site-scanner,scan,"a:4:{s:5:""route"";s:8:""api/scan"";s:6:""method"";s:4:""POST"";s:4:""body"";a:4:{s:9:""wordpress"";s:5:""6.4.1"";s:7:""plugins"";a:25:{s:11:""ad-inserter"";s:6:""2.7.32"";s:23:""codepress-admin-columns"";s:5:""4.6.1"";s:7:""akismet"";s:3:""5.3"";s:11:""astra-addon"";s:5:""4.5.1"";s:53:""auto-image-attributes-from-filename-with-bulk-updater"";s:3:""4.4"";s:19:""broken-link-checker"";s:5:""2.2.3"";s:15:""classic-widgets"";s:3:""0.3"";s:20:""ewww-image-optimizer"";s:5:""7.2.1"";s:22:""featured-image-caption"";s:6:""0.8.11"";s:12:""gn-publisher"";s:8:""1.5.11.1"";s:21:""intelly-related-posts"";s:5:""3.3.1"";s:23:""latest-registered-users"";s:3:""1.3"";s:10:""pushengage"";s:5:""4.0.6"";s:14:""google-captcha"";s:4:""1.73"";s:15:""socialsnap-plus"";s:5:""1.3.4"";s:18:""better-wp-security"";s:5:""9.1.0"";s:11:""wp-optimize"";s:6:""3.2.22"";s:8:""wp-sweep"";s:5:""1.1.8"";s:17:""wp-external-links"";s:4:""2.59"";s:17:""wp-fail2ban-redux"";s:5:""0.9.1"";s:12:""wpforms-lite"";s:7:""1.8.5.2"";s:9:""wp-rocket"";s:6:""3.15.5"";s:13:""wordpress-seo"";s:4:""21.6"";s:10:""wpseo-news"";s:4:""13.1"";s:21:""wordpress-seo-premium"";s:4:""21.6"";}s:6:""themes"";a:4:{s:11:""astra-child"";s:5:""1.0.0"";s:5:""astra"";s:5:""4.5.1"";s:16:""twentytwentyfour"";s:3:""1.0"";s:17:""twentytwentythree"";s:3:""1.3"";}s:11:""mutedIssues"";a:0:{}}s:7:""headers"";a:3:{s:12:""Content-Type"";s:16:""application/json"";s:6:""Accept"";s:42:""application/vnd.site-scanner.ithemes;v=1.1"";s:13:""Authorization"";s:235:""X-SiteRegistration v2.local.jR7JW3HSust1iSo61rg0aNU5CNa7yA0eqYn4ZW03l_8yulRFNRFttd6tP5Lh1JXq5wGhUY0OCdFrjLiwrw2YlOvJzkydDxmy2Rq1vMpea2PZMO-GIwXQCm9RuUlF8C5x4ovr9mAgH0qYmU0DmOyFSi571tgKzcKUw02x5gMIYs0uBoWxUlts1SSZlDG1ojktR2u0WPAXhpaR1Ac"";}}",process-update,"2023-12-04 09:14:56","2023-12-04 09:14:55",35670184,35724968,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
    1701681296.0094,site-scanner,scan,"a:3:{s:6:""action"";s:16:""caching-response"";s:6:""mapped"";a:2:{s:7:""private"";b:1;s:7:""max-age"";s:4:""3600"";}s:9:""cache_key"";s:51:""itsec-site-scanner-3929fe3367a35db1571b3ee92b617d5f"";}",process-update,"2023-12-04 09:14:56","2023-12-04 09:14:55",35853672,35867584,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
    1701681296.0094,site-scanner,scan,"a:2:{s:7:""results"";a:4:{s:3:""url"";s:24:""https://website.com"";s:7:""version"";s:3:""1.1"";s:7:""entries"";a:2:{s:9:""blacklist"";a:1:{i:0;a:3:{s:14:""report_details"";s:79:""https://transparencyreport.google.com/safe-browsing/search?url=website.com"";s:6:""status"";s:5:""clean"";s:6:""vendor"";a:2:{s:4:""slug"";s:6:""google"";s:5:""label"";s:20:""Google Safe Browsing"";}}}s:15:""vulnerabilities"";a:0:{}}s:6:""errors"";a:0:{}}s:6:""cached"";b:0;}",process-stop,"2023-12-04 09:14:56","2023-12-04 09:14:55",35836496,35867584,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
    0,site-scanner,clean,"a:2:{s:7:""results"";a:4:{s:3:""url"";s:24:""https://website.com"";s:7:""version"";s:3:""1.1"";s:7:""entries"";a:2:{s:9:""blacklist"";a:1:{i:0;a:3:{s:14:""report_details"";s:79:""https://transparencyreport.google.com/safe-browsing/search?url=website.com"";s:6:""status"";s:5:""clean"";s:6:""vendor"";a:2:{s:4:""slug"";s:6:""google"";s:5:""label"";s:20:""Google Safe Browsing"";}}}s:15:""vulnerabilities"";a:0:{}}s:6:""errors"";a:0:{}}s:6:""cached"";b:0;}",notice,"2023-12-04 09:14:56","2023-12-04 09:14:55",35836496,35867584,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
    0,site-scanner,scan,"a:1:{s:7:""site_id"";i:0;}",process-start,"2023-12-04 09:27:41","2023-12-04 09:27:41",39350520,39491352,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
    1701682061.2591,site-scanner,scan,"a:4:{s:5:""route"";s:8:""api/scan"";s:6:""method"";s:4:""POST"";s:4:""body"";a:4:{s:9:""wordpress"";s:5:""6.4.1"";s:7:""plugins"";a:25:{s:11:""ad-inserter"";s:6:""2.7.32"";s:23:""codepress-admin-columns"";s:5:""4.6.1"";s:7:""akismet"";s:3:""5.3"";s:11:""astra-addon"";s:5:""4.5.1"";s:53:""auto-image-attributes-from-filename-with-bulk-updater"";s:3:""4.4"";s:19:""broken-link-checker"";s:5:""2.2.3"";s:15:""classic-widgets"";s:3:""0.3"";s:20:""ewww-image-optimizer"";s:5:""7.2.1"";s:22:""featured-image-caption"";s:6:""0.8.11"";s:12:""gn-publisher"";s:8:""1.5.11.1"";s:21:""intelly-related-posts"";s:5:""3.3.1"";s:23:""latest-registered-users"";s:3:""1.3"";s:10:""pushengage"";s:5:""4.0.6"";s:14:""google-captcha"";s:4:""1.73"";s:15:""socialsnap-plus"";s:5:""1.3.4"";s:18:""better-wp-security"";s:5:""9.1.0"";s:11:""wp-optimize"";s:6:""3.2.22"";s:8:""wp-sweep"";s:5:""1.1.8"";s:17:""wp-external-links"";s:4:""2.59"";s:17:""wp-fail2ban-redux"";s:5:""0.9.1"";s:12:""wpforms-lite"";s:7:""1.8.5.2"";s:9:""wp-rocket"";s:6:""3.15.5"";s:13:""wordpress-seo"";s:4:""21.6"";s:10:""wpseo-news"";s:4:""13.1"";s:21:""wordpress-seo-premium"";s:4:""21.6"";}s:6:""themes"";a:4:{s:11:""astra-child"";s:5:""1.0.0"";s:5:""astra"";s:5:""4.5.1"";s:16:""twentytwentyfour"";s:3:""1.0"";s:17:""twentytwentythree"";s:3:""1.3"";}s:11:""mutedIssues"";a:0:{}}s:7:""headers"";a:3:{s:12:""Content-Type"";s:16:""application/json"";s:6:""Accept"";s:42:""application/vnd.site-scanner.ithemes;v=1.1"";s:13:""Authorization"";s:235:""X-SiteRegistration v2.local.jR7JW3HSust1iSo61rg0aNU5CNa7yA0eqYn4ZW03l_8yulRFNRFttd6tP5Lh1JXq5wGhUY0OxdFrjLiwrw2YlOvJzkydDxmy2Rq1vMpea2PZMO-GIwXQCm9RuUlF8C5x4ovr9mAgH0qYmU0DmOyFSi571tgKzcKUw02x5gMIYs0uBoWxUlts1SSZlDG1ojktR2u0WPAXhpaR1Ac"";}}",process-update,"2023-12-04 09:27:41","2023-12-04 09:27:41",39542688,39587952,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
    1701682061.2591,site-scanner,scan,"a:2:{s:7:""results"";a:4:{s:3:""url"";s:24:""https://website.com"";s:7:""version"";s:3:""1.1"";s:7:""entries"";a:2:{s:9:""blacklist"";a:1:{i:0;a:3:{s:14:""report_details"";s:79:""https://transparencyreport.google.com/safe-browsing/search?url=website.com"";s:6:""status"";s:5:""clean"";s:6:""vendor"";a:2:{s:4:""slug"";s:6:""google"";s:5:""label"";s:20:""Google Safe Browsing"";}}}s:15:""vulnerabilities"";a:0:{}}s:6:""errors"";a:0:{}}s:6:""cached"";b:1;}",process-stop,"2023-12-04 09:27:41","2023-12-04 09:27:41",39539432,39587952,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8

    Thread Starter neuralnet

    (@neuralnet)

    Hi Peter,

    I didn’t get any follow-up on this. Did you get the report ?

    Thanks.

    Thread Starter neuralnet

    (@neuralnet)

    Thanks for the fast reply! I understand the bind you’re in.. however I feel that $89/YEAR is too high a price. Personally I like to own a licence and not lease a theme for a year, and at that price is just not considerable for me.

    I would suggest you lower the price and offer lifetime licencing.. but hey, it’s your business not mine ??

    Thread Starter neuralnet

    (@neuralnet)

    Hi, report sent. Thanks!

    Thread Starter neuralnet

    (@neuralnet)

    Hi Peter,

    Thanks for your reply. Initially there was a setting in /etc/php/7.4/fpm/php.ini that I commented out, so now it looks like this;

    ;auto_prepend_file =

    Until this was commented out there were no prepended files shown in info.php, but once I did that it appeared as I mentioned in my first post.

    I’ve checked I can find no reference to prepend in any of the files in /etc/php/7.4/fpm/conf.d/ (in fact I have commented out all auto_prepend_file entries in ALL php configs in /etc/php/7.4/ plus there’s nothing appearing in /var/log/apache2/error.log when I go through firewall optimisation. I can confirm that .htaccess and .user.ini are both as they should be..

    FYI The website firewall gets a score of 34%.. which I can’t make it add up from the options shown in the mouseover ?? (11% premium rules, 35% realtime blocklist, 1% re-enable 9 rules, 20% optimise firewall… which all add up to 67%?).

    In any event, diagnostics still says No;

    Wordfence Firewall Current WAF configuration.
        WAF auto prepend active
        No

    I’d had a good read through the docs before posting, so I’m a bit stumpted. info.php still shows;

    auto_prepend_file /correct/path/to/wordfence-waf.php

    Also listed with info.php in ‘disable_functions’ are the following;

    pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare,

    Could any of these be relevent ?

    • This reply was modified 2 years, 8 months ago by neuralnet.

    I had exactly the same experience and I have only just come to realise that the plugin that was working fine has been replaced with one that does not work, with no notice.. leaving me open to breach of regulations. This is not acceptable, I will not be subscribing and am looking for a more reliable alternative to your bait and switch.

    Same here, I hope the author @gioindahouz sees this and investigates..

    • This reply was modified 8 years, 3 months ago by neuralnet.
    Thread Starter neuralnet

    (@neuralnet)

    Sorry, needed to create slider first. Need to go
    Content: > Front Page > Create slider
    now the options appear in the media menu.

Viewing 10 replies - 1 through 10 (of 10 total)