neuralnet

Yes, that makes perfect sense. I forget that the scanning is not server side!

All good now & will be when the new site goes live. Thanks.

id               => 2320
module           => site-scanner
type             => notice
code             => clean
timestamp        => 2024-03-06 10:19:25
init_timestamp   => 2024-03-06 10:19:23
remote_ip        => 90.250.11.44
user_id          => 1883
url              => https://staging.worldinsport.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user
memory_current   => 9628984
memory_peak      => 9713680
data             => Array
    results   => Array
        url       => https://staging.worldinsport.com
        version   => 1.1
        entries   => Array
            blacklist         => Array
                0   => Array
                    report_details   => https://transparencyreport.google.com/safe-browsing/search?url=staging.worldinsport.com
                    status           => clean
                    vendor           => Array
                        slug    => google
                        label   => Google Safe Browsing
            vulnerabilities   => Array()
        errors    => Array()
    cached    => [boolean] false

Hi there @shanedelierrr, thanks for the assistance. Yes, I can confirm that Solid Security is now scanning properly. Clearing caches etc didn’t make a difference and the IP wasn’t blocked. There wasn’t a conflict and running the plugin on it’s own didn’t change things. I had to do a full reinstall, replacing the plugin files wasn’t sufficient.. but now we’re in business.

FYI the experience I had earlier confirmed to me that it actually wasn’t scanning before, despite saying that it had in the logs. The ‘scan’ previously ‘completed’ in under a second. Now it’s actually scanning it takes around 10-15s to complete.

Thanks!

• This reply was modified 1 year, 3 months ago by neuralnet.

The plugin was installed via the wordpress site, so we didn’t upload a .zip. Here are the logs generated during scans. I’ve changed the website address and the IP address requesting the scan, otherwise it’s as-is. Please let me know if you need any more.

Thanks!

0,site-scanner,scan,"a:1:{s:7:""site_id"";i:0;}",process-start,"2023-12-04 09:14:56","2023-12-04 09:14:55",35584136,35724968,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
1701681296.0094,site-scanner,scan,"a:4:{s:5:""route"";s:8:""api/scan"";s:6:""method"";s:4:""POST"";s:4:""body"";a:4:{s:9:""wordpress"";s:5:""6.4.1"";s:7:""plugins"";a:25:{s:11:""ad-inserter"";s:6:""2.7.32"";s:23:""codepress-admin-columns"";s:5:""4.6.1"";s:7:""akismet"";s:3:""5.3"";s:11:""astra-addon"";s:5:""4.5.1"";s:53:""auto-image-attributes-from-filename-with-bulk-updater"";s:3:""4.4"";s:19:""broken-link-checker"";s:5:""2.2.3"";s:15:""classic-widgets"";s:3:""0.3"";s:20:""ewww-image-optimizer"";s:5:""7.2.1"";s:22:""featured-image-caption"";s:6:""0.8.11"";s:12:""gn-publisher"";s:8:""1.5.11.1"";s:21:""intelly-related-posts"";s:5:""3.3.1"";s:23:""latest-registered-users"";s:3:""1.3"";s:10:""pushengage"";s:5:""4.0.6"";s:14:""google-captcha"";s:4:""1.73"";s:15:""socialsnap-plus"";s:5:""1.3.4"";s:18:""better-wp-security"";s:5:""9.1.0"";s:11:""wp-optimize"";s:6:""3.2.22"";s:8:""wp-sweep"";s:5:""1.1.8"";s:17:""wp-external-links"";s:4:""2.59"";s:17:""wp-fail2ban-redux"";s:5:""0.9.1"";s:12:""wpforms-lite"";s:7:""1.8.5.2"";s:9:""wp-rocket"";s:6:""3.15.5"";s:13:""wordpress-seo"";s:4:""21.6"";s:10:""wpseo-news"";s:4:""13.1"";s:21:""wordpress-seo-premium"";s:4:""21.6"";}s:6:""themes"";a:4:{s:11:""astra-child"";s:5:""1.0.0"";s:5:""astra"";s:5:""4.5.1"";s:16:""twentytwentyfour"";s:3:""1.0"";s:17:""twentytwentythree"";s:3:""1.3"";}s:11:""mutedIssues"";a:0:{}}s:7:""headers"";a:3:{s:12:""Content-Type"";s:16:""application/json"";s:6:""Accept"";s:42:""application/vnd.site-scanner.ithemes;v=1.1"";s:13:""Authorization"";s:235:""X-SiteRegistration v2.local.jR7JW3HSust1iSo61rg0aNU5CNa7yA0eqYn4ZW03l_8yulRFNRFttd6tP5Lh1JXq5wGhUY0OCdFrjLiwrw2YlOvJzkydDxmy2Rq1vMpea2PZMO-GIwXQCm9RuUlF8C5x4ovr9mAgH0qYmU0DmOyFSi571tgKzcKUw02x5gMIYs0uBoWxUlts1SSZlDG1ojktR2u0WPAXhpaR1Ac"";}}",process-update,"2023-12-04 09:14:56","2023-12-04 09:14:55",35670184,35724968,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
1701681296.0094,site-scanner,scan,"a:3:{s:6:""action"";s:16:""caching-response"";s:6:""mapped"";a:2:{s:7:""private"";b:1;s:7:""max-age"";s:4:""3600"";}s:9:""cache_key"";s:51:""itsec-site-scanner-3929fe3367a35db1571b3ee92b617d5f"";}",process-update,"2023-12-04 09:14:56","2023-12-04 09:14:55",35853672,35867584,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
1701681296.0094,site-scanner,scan,"a:2:{s:7:""results"";a:4:{s:3:""url"";s:24:""https://website.com"";s:7:""version"";s:3:""1.1"";s:7:""entries"";a:2:{s:9:""blacklist"";a:1:{i:0;a:3:{s:14:""report_details"";s:79:""https://transparencyreport.google.com/safe-browsing/search?url=website.com"";s:6:""status"";s:5:""clean"";s:6:""vendor"";a:2:{s:4:""slug"";s:6:""google"";s:5:""label"";s:20:""Google Safe Browsing"";}}}s:15:""vulnerabilities"";a:0:{}}s:6:""errors"";a:0:{}}s:6:""cached"";b:0;}",process-stop,"2023-12-04 09:14:56","2023-12-04 09:14:55",35836496,35867584,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
0,site-scanner,clean,"a:2:{s:7:""results"";a:4:{s:3:""url"";s:24:""https://website.com"";s:7:""version"";s:3:""1.1"";s:7:""entries"";a:2:{s:9:""blacklist"";a:1:{i:0;a:3:{s:14:""report_details"";s:79:""https://transparencyreport.google.com/safe-browsing/search?url=website.com"";s:6:""status"";s:5:""clean"";s:6:""vendor"";a:2:{s:4:""slug"";s:6:""google"";s:5:""label"";s:20:""Google Safe Browsing"";}}}s:15:""vulnerabilities"";a:0:{}}s:6:""errors"";a:0:{}}s:6:""cached"";b:0;}",notice,"2023-12-04 09:14:56","2023-12-04 09:14:55",35836496,35867584,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
0,site-scanner,scan,"a:1:{s:7:""site_id"";i:0;}",process-start,"2023-12-04 09:27:41","2023-12-04 09:27:41",39350520,39491352,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
1701682061.2591,site-scanner,scan,"a:4:{s:5:""route"";s:8:""api/scan"";s:6:""method"";s:4:""POST"";s:4:""body"";a:4:{s:9:""wordpress"";s:5:""6.4.1"";s:7:""plugins"";a:25:{s:11:""ad-inserter"";s:6:""2.7.32"";s:23:""codepress-admin-columns"";s:5:""4.6.1"";s:7:""akismet"";s:3:""5.3"";s:11:""astra-addon"";s:5:""4.5.1"";s:53:""auto-image-attributes-from-filename-with-bulk-updater"";s:3:""4.4"";s:19:""broken-link-checker"";s:5:""2.2.3"";s:15:""classic-widgets"";s:3:""0.3"";s:20:""ewww-image-optimizer"";s:5:""7.2.1"";s:22:""featured-image-caption"";s:6:""0.8.11"";s:12:""gn-publisher"";s:8:""1.5.11.1"";s:21:""intelly-related-posts"";s:5:""3.3.1"";s:23:""latest-registered-users"";s:3:""1.3"";s:10:""pushengage"";s:5:""4.0.6"";s:14:""google-captcha"";s:4:""1.73"";s:15:""socialsnap-plus"";s:5:""1.3.4"";s:18:""better-wp-security"";s:5:""9.1.0"";s:11:""wp-optimize"";s:6:""3.2.22"";s:8:""wp-sweep"";s:5:""1.1.8"";s:17:""wp-external-links"";s:4:""2.59"";s:17:""wp-fail2ban-redux"";s:5:""0.9.1"";s:12:""wpforms-lite"";s:7:""1.8.5.2"";s:9:""wp-rocket"";s:6:""3.15.5"";s:13:""wordpress-seo"";s:4:""21.6"";s:10:""wpseo-news"";s:4:""13.1"";s:21:""wordpress-seo-premium"";s:4:""21.6"";}s:6:""themes"";a:4:{s:11:""astra-child"";s:5:""1.0.0"";s:5:""astra"";s:5:""4.5.1"";s:16:""twentytwentyfour"";s:3:""1.0"";s:17:""twentytwentythree"";s:3:""1.3"";}s:11:""mutedIssues"";a:0:{}}s:7:""headers"";a:3:{s:12:""Content-Type"";s:16:""application/json"";s:6:""Accept"";s:42:""application/vnd.site-scanner.ithemes;v=1.1"";s:13:""Authorization"";s:235:""X-SiteRegistration v2.local.jR7JW3HSust1iSo61rg0aNU5CNa7yA0eqYn4ZW03l_8yulRFNRFttd6tP5Lh1JXq5wGhUY0OxdFrjLiwrw2YlOvJzkydDxmy2Rq1vMpea2PZMO-GIwXQCm9RuUlF8C5x4ovr9mAgH0qYmU0DmOyFSi571tgKzcKUw02x5gMIYs0uBoWxUlts1SSZlDG1ojktR2u0WPAXhpaR1Ac"";}}",process-update,"2023-12-04 09:27:41","2023-12-04 09:27:41",39542688,39587952,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
1701682061.2591,site-scanner,scan,"a:2:{s:7:""results"";a:4:{s:3:""url"";s:24:""https://website.com"";s:7:""version"";s:3:""1.1"";s:7:""entries"";a:2:{s:9:""blacklist"";a:1:{i:0;a:3:{s:14:""report_details"";s:79:""https://transparencyreport.google.com/safe-browsing/search?url=website.com"";s:6:""status"";s:5:""clean"";s:6:""vendor"";a:2:{s:4:""slug"";s:6:""google"";s:5:""label"";s:20:""Google Safe Browsing"";}}}s:15:""vulnerabilities"";a:0:{}}s:6:""errors"";a:0:{}}s:6:""cached"";b:1;}",process-stop,"2023-12-04 09:27:41","2023-12-04 09:27:41",39539432,39587952,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8

Hi Peter,

I didn’t get any follow-up on this. Did you get the report ?

Thanks.

Thanks for the fast reply! I understand the bind you’re in.. however I feel that $89/YEAR is too high a price. Personally I like to own a licence and not lease a theme for a year, and at that price is just not considerable for me.

I would suggest you lower the price and offer lifetime licencing.. but hey, it’s your business not mine ??

Hi, report sent. Thanks!

Hi Peter,

Thanks for your reply. Initially there was a setting in /etc/php/7.4/fpm/php.ini that I commented out, so now it looks like this;

;auto_prepend_file =

Until this was commented out there were no prepended files shown in info.php, but once I did that it appeared as I mentioned in my first post.

I’ve checked I can find no reference to prepend in any of the files in /etc/php/7.4/fpm/conf.d/ (in fact I have commented out all auto_prepend_file entries in ALL php configs in /etc/php/7.4/ plus there’s nothing appearing in /var/log/apache2/error.log when I go through firewall optimisation. I can confirm that .htaccess and .user.ini are both as they should be..

FYI The website firewall gets a score of 34%.. which I can’t make it add up from the options shown in the mouseover ?? (11% premium rules, 35% realtime blocklist, 1% re-enable 9 rules, 20% optimise firewall… which all add up to 67%?).

In any event, diagnostics still says No;

Wordfence Firewall Current WAF configuration.
    WAF auto prepend active
    No

I’d had a good read through the docs before posting, so I’m a bit stumpted. info.php still shows;

auto_prepend_file /correct/path/to/wordfence-waf.php

Also listed with info.php in ‘disable_functions’ are the following;

pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare,

Could any of these be relevent ?

• This reply was modified 2 years, 8 months ago by neuralnet.

I had exactly the same experience and I have only just come to realise that the plugin that was working fine has been replaced with one that does not work, with no notice.. leaving me open to breach of regulations. This is not acceptable, I will not be subscribing and am looking for a more reliable alternative to your bait and switch.

Same here, I hope the author @gioindahouz sees this and investigates..

• This reply was modified 8 years, 3 months ago by neuralnet.

Sorry, needed to create slider first. Need to go
Content: > Front Page > Create slider
now the options appear in the media menu.