neuralnet
Forum Replies Created
-
Yes, that makes perfect sense. I forget that the scanning is not server side!
All good now & will be when the new site goes live. Thanks.
id => 2320 module => site-scanner type => notice code => clean timestamp => 2024-03-06 10:19:25 init_timestamp => 2024-03-06 10:19:23 remote_ip => 90.250.11.44 user_id => 1883 url => https://staging.worldinsport.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user memory_current => 9628984 memory_peak => 9713680 data => Array results => Array url => https://staging.worldinsport.com version => 1.1 entries => Array blacklist => Array 0 => Array report_details => https://transparencyreport.google.com/safe-browsing/search?url=staging.worldinsport.com status => clean vendor => Array slug => google label => Google Safe Browsing vulnerabilities => Array() errors => Array() cached => [boolean] false
Hi there @shanedelierrr, thanks for the assistance. Yes, I can confirm that Solid Security is now scanning properly. Clearing caches etc didn’t make a difference and the IP wasn’t blocked. There wasn’t a conflict and running the plugin on it’s own didn’t change things. I had to do a full reinstall, replacing the plugin files wasn’t sufficient.. but now we’re in business.
FYI the experience I had earlier confirmed to me that it actually wasn’t scanning before, despite saying that it had in the logs. The ‘scan’ previously ‘completed’ in under a second. Now it’s actually scanning it takes around 10-15s to complete.
Thanks!
- This reply was modified 1 year, 3 months ago by neuralnet.
The plugin was installed via the wordpress site, so we didn’t upload a .zip. Here are the logs generated during scans. I’ve changed the website address and the IP address requesting the scan, otherwise it’s as-is. Please let me know if you need any more.
Thanks!
0,site-scanner,scan,"a:1:{s:7:""site_id"";i:0;}",process-start,"2023-12-04 09:14:56","2023-12-04 09:14:55",35584136,35724968,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
1701681296.0094,site-scanner,scan,"a:4:{s:5:""route"";s:8:""api/scan"";s:6:""method"";s:4:""POST"";s:4:""body"";a:4:{s:9:""wordpress"";s:5:""6.4.1"";s:7:""plugins"";a:25:{s:11:""ad-inserter"";s:6:""2.7.32"";s:23:""codepress-admin-columns"";s:5:""4.6.1"";s:7:""akismet"";s:3:""5.3"";s:11:""astra-addon"";s:5:""4.5.1"";s:53:""auto-image-attributes-from-filename-with-bulk-updater"";s:3:""4.4"";s:19:""broken-link-checker"";s:5:""2.2.3"";s:15:""classic-widgets"";s:3:""0.3"";s:20:""ewww-image-optimizer"";s:5:""7.2.1"";s:22:""featured-image-caption"";s:6:""0.8.11"";s:12:""gn-publisher"";s:8:""1.5.11.1"";s:21:""intelly-related-posts"";s:5:""3.3.1"";s:23:""latest-registered-users"";s:3:""1.3"";s:10:""pushengage"";s:5:""4.0.6"";s:14:""google-captcha"";s:4:""1.73"";s:15:""socialsnap-plus"";s:5:""1.3.4"";s:18:""better-wp-security"";s:5:""9.1.0"";s:11:""wp-optimize"";s:6:""3.2.22"";s:8:""wp-sweep"";s:5:""1.1.8"";s:17:""wp-external-links"";s:4:""2.59"";s:17:""wp-fail2ban-redux"";s:5:""0.9.1"";s:12:""wpforms-lite"";s:7:""1.8.5.2"";s:9:""wp-rocket"";s:6:""3.15.5"";s:13:""wordpress-seo"";s:4:""21.6"";s:10:""wpseo-news"";s:4:""13.1"";s:21:""wordpress-seo-premium"";s:4:""21.6"";}s:6:""themes"";a:4:{s:11:""astra-child"";s:5:""1.0.0"";s:5:""astra"";s:5:""4.5.1"";s:16:""twentytwentyfour"";s:3:""1.0"";s:17:""twentytwentythree"";s:3:""1.3"";}s:11:""mutedIssues"";a:0:{}}s:7:""headers"";a:3:{s:12:""Content-Type"";s:16:""application/json"";s:6:""Accept"";s:42:""application/vnd.site-scanner.ithemes;v=1.1"";s:13:""Authorization"";s:235:""X-SiteRegistration v2.local.jR7JW3HSust1iSo61rg0aNU5CNa7yA0eqYn4ZW03l_8yulRFNRFttd6tP5Lh1JXq5wGhUY0OCdFrjLiwrw2YlOvJzkydDxmy2Rq1vMpea2PZMO-GIwXQCm9RuUlF8C5x4ovr9mAgH0qYmU0DmOyFSi571tgKzcKUw02x5gMIYs0uBoWxUlts1SSZlDG1ojktR2u0WPAXhpaR1Ac"";}}",process-update,"2023-12-04 09:14:56","2023-12-04 09:14:55",35670184,35724968,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
1701681296.0094,site-scanner,scan,"a:3:{s:6:""action"";s:16:""caching-response"";s:6:""mapped"";a:2:{s:7:""private"";b:1;s:7:""max-age"";s:4:""3600"";}s:9:""cache_key"";s:51:""itsec-site-scanner-3929fe3367a35db1571b3ee92b617d5f"";}",process-update,"2023-12-04 09:14:56","2023-12-04 09:14:55",35853672,35867584,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
1701681296.0094,site-scanner,scan,"a:2:{s:7:""results"";a:4:{s:3:""url"";s:24:""https://website.com"";s:7:""version"";s:3:""1.1"";s:7:""entries"";a:2:{s:9:""blacklist"";a:1:{i:0;a:3:{s:14:""report_details"";s:79:""https://transparencyreport.google.com/safe-browsing/search?url=website.com"";s:6:""status"";s:5:""clean"";s:6:""vendor"";a:2:{s:4:""slug"";s:6:""google"";s:5:""label"";s:20:""Google Safe Browsing"";}}}s:15:""vulnerabilities"";a:0:{}}s:6:""errors"";a:0:{}}s:6:""cached"";b:0;}",process-stop,"2023-12-04 09:14:56","2023-12-04 09:14:55",35836496,35867584,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
0,site-scanner,clean,"a:2:{s:7:""results"";a:4:{s:3:""url"";s:24:""https://website.com"";s:7:""version"";s:3:""1.1"";s:7:""entries"";a:2:{s:9:""blacklist"";a:1:{i:0;a:3:{s:14:""report_details"";s:79:""https://transparencyreport.google.com/safe-browsing/search?url=website.com"";s:6:""status"";s:5:""clean"";s:6:""vendor"";a:2:{s:4:""slug"";s:6:""google"";s:5:""label"";s:20:""Google Safe Browsing"";}}}s:15:""vulnerabilities"";a:0:{}}s:6:""errors"";a:0:{}}s:6:""cached"";b:0;}",notice,"2023-12-04 09:14:56","2023-12-04 09:14:55",35836496,35867584,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
0,site-scanner,scan,"a:1:{s:7:""site_id"";i:0;}",process-start,"2023-12-04 09:27:41","2023-12-04 09:27:41",39350520,39491352,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
1701682061.2591,site-scanner,scan,"a:4:{s:5:""route"";s:8:""api/scan"";s:6:""method"";s:4:""POST"";s:4:""body"";a:4:{s:9:""wordpress"";s:5:""6.4.1"";s:7:""plugins"";a:25:{s:11:""ad-inserter"";s:6:""2.7.32"";s:23:""codepress-admin-columns"";s:5:""4.6.1"";s:7:""akismet"";s:3:""5.3"";s:11:""astra-addon"";s:5:""4.5.1"";s:53:""auto-image-attributes-from-filename-with-bulk-updater"";s:3:""4.4"";s:19:""broken-link-checker"";s:5:""2.2.3"";s:15:""classic-widgets"";s:3:""0.3"";s:20:""ewww-image-optimizer"";s:5:""7.2.1"";s:22:""featured-image-caption"";s:6:""0.8.11"";s:12:""gn-publisher"";s:8:""1.5.11.1"";s:21:""intelly-related-posts"";s:5:""3.3.1"";s:23:""latest-registered-users"";s:3:""1.3"";s:10:""pushengage"";s:5:""4.0.6"";s:14:""google-captcha"";s:4:""1.73"";s:15:""socialsnap-plus"";s:5:""1.3.4"";s:18:""better-wp-security"";s:5:""9.1.0"";s:11:""wp-optimize"";s:6:""3.2.22"";s:8:""wp-sweep"";s:5:""1.1.8"";s:17:""wp-external-links"";s:4:""2.59"";s:17:""wp-fail2ban-redux"";s:5:""0.9.1"";s:12:""wpforms-lite"";s:7:""1.8.5.2"";s:9:""wp-rocket"";s:6:""3.15.5"";s:13:""wordpress-seo"";s:4:""21.6"";s:10:""wpseo-news"";s:4:""13.1"";s:21:""wordpress-seo-premium"";s:4:""21.6"";}s:6:""themes"";a:4:{s:11:""astra-child"";s:5:""1.0.0"";s:5:""astra"";s:5:""4.5.1"";s:16:""twentytwentyfour"";s:3:""1.0"";s:17:""twentytwentythree"";s:3:""1.3"";}s:11:""mutedIssues"";a:0:{}}s:7:""headers"";a:3:{s:12:""Content-Type"";s:16:""application/json"";s:6:""Accept"";s:42:""application/vnd.site-scanner.ithemes;v=1.1"";s:13:""Authorization"";s:235:""X-SiteRegistration v2.local.jR7JW3HSust1iSo61rg0aNU5CNa7yA0eqYn4ZW03l_8yulRFNRFttd6tP5Lh1JXq5wGhUY0OxdFrjLiwrw2YlOvJzkydDxmy2Rq1vMpea2PZMO-GIwXQCm9RuUlF8C5x4ovr9mAgH0qYmU0DmOyFSi571tgKzcKUw02x5gMIYs0uBoWxUlts1SSZlDG1ojktR2u0WPAXhpaR1Ac"";}}",process-update,"2023-12-04 09:27:41","2023-12-04 09:27:41",39542688,39587952,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8
1701682061.2591,site-scanner,scan,"a:2:{s:7:""results"";a:4:{s:3:""url"";s:24:""https://website.com"";s:7:""version"";s:3:""1.1"";s:7:""entries"";a:2:{s:9:""blacklist"";a:1:{i:0;a:3:{s:14:""report_details"";s:79:""https://transparencyreport.google.com/safe-browsing/search?url=website.com"";s:6:""status"";s:5:""clean"";s:6:""vendor"";a:2:{s:4:""slug"";s:6:""google"";s:5:""label"";s:20:""Google Safe Browsing"";}}}s:15:""vulnerabilities"";a:0:{}}s:6:""errors"";a:0:{}}s:6:""cached"";b:1;}",process-stop,"2023-12-04 09:27:41","2023-12-04 09:27:41",39539432,39587952,https://website.com/wp-json/ithemes-security/v1/site-scanner/scans?_locale=user,1,1883,8.8.8.8Hi Peter,
I didn’t get any follow-up on this. Did you get the report ?
Thanks.
Forum: Reviews
In reply to: [Neve] Flexible and renders FASTThanks for the fast reply! I understand the bind you’re in.. however I feel that $89/YEAR is too high a price. Personally I like to own a licence and not lease a theme for a year, and at that price is just not considerable for me.
I would suggest you lower the price and offer lifetime licencing.. but hey, it’s your business not mine ??
Hi, report sent. Thanks!
Hi Peter,
Thanks for your reply. Initially there was a setting in /etc/php/7.4/fpm/php.ini that I commented out, so now it looks like this;
;auto_prepend_file =
Until this was commented out there were no prepended files shown in info.php, but once I did that it appeared as I mentioned in my first post.
I’ve checked I can find no reference to prepend in any of the files in /etc/php/7.4/fpm/conf.d/ (in fact I have commented out all auto_prepend_file entries in ALL php configs in /etc/php/7.4/ plus there’s nothing appearing in /var/log/apache2/error.log when I go through firewall optimisation. I can confirm that .htaccess and .user.ini are both as they should be..
FYI The website firewall gets a score of 34%.. which I can’t make it add up from the options shown in the mouseover ?? (11% premium rules, 35% realtime blocklist, 1% re-enable 9 rules, 20% optimise firewall… which all add up to 67%?).
In any event, diagnostics still says No;
Wordfence Firewall Current WAF configuration. WAF auto prepend active No
I’d had a good read through the docs before posting, so I’m a bit stumpted. info.php still shows;
auto_prepend_file /correct/path/to/wordfence-waf.php
Also listed with info.php in ‘disable_functions’ are the following;
pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare,
Could any of these be relevent ?
- This reply was modified 2 years, 8 months ago by neuralnet.
Forum: Reviews
In reply to: [Termly - GDPR/CCPA Cookie Consent Banner] Completely different pluginI had exactly the same experience and I have only just come to realise that the plugin that was working fine has been replaced with one that does not work, with no notice.. leaving me open to breach of regulations. This is not acceptable, I will not be subscribing and am looking for a more reliable alternative to your bait and switch.
Forum: Plugins
In reply to: [Simple Membership Menu] Issue on WP 4.7Same here, I hope the author @gioindahouz sees this and investigates..
- This reply was modified 8 years, 3 months ago by neuralnet.
Forum: Themes and Templates
In reply to: [Customizr] Slider options not availableSorry, needed to create slider first. Need to go
Content: > Front Page > Create slider
now the options appear in the media menu.