I am evaluating querywall and like its premise. However, am experiencing complete lockouts, including to admin, by the plugin with resulting 403 error.
Steps to reproduce problem:
1) Install querywall on WP 5.4.1 under cpanel
2) Activate
3) Add multiple rules to test to first rules panel that should not conflict with any actual operations nor have possibility of being triggered eg:
abracadabra\.php
pillowvirus\.php
(Note: the above two filenames do not exist in the file system)
4) Save
This results in immediately being locked out with a 403 error
The plugin must then be manually disabled.
Removing and reinstalling the plugin results immediately in the 403 error again.
I can confirm that removing the plugin does the following:
a) removes the files from plugin directory /wp-content/plugins/querywall/
b) removes the table cpaneldbprefix_qwall_monitor
I cannot see where the firewall settings data for querywall are stored. eg: doing a text search in files for “abracadabra” after adding it as a rule does not provide any hits, neither does searching the all of the tables in the database.
Would someone please advise where the rules are stored and how to ensure that all custom rules are being removed for querywall so a completely clean install can be performed?
And can anyone confirm that querywall is working ok under WordPress 5.4.1 with custom rules added?
Finally, is it possible with querywall to blacklist IP addresses that break the firewall rules for a period of time?
Thank you
]]>Hi
I need to allow one extension that is forbidden by default. how to do it?
]]>Is there no update for this plugin for WP gutenberg and php 7.0 ? I’m having the following warning on error.log-files:
Got error ‘PHP message: PHP Warning: preg_match(): Unknown modifier ‘\\’ in /…/wp-content/plugins/querywall/core/class-qwall-firewall.php on line 78\n’
Should I turn this on in settings or not? There was no explanation
]]>Im getting this message. I deactivated and activated plugin but this isnt enough. I had many installations before working with this plugin without issues until this 4.9.1. Always using this boilerplater: https://roots.io/bedrock/
PHP message: Error Table ‘XXX.wp_qwall_monitor’ doesn’t exist
]]>Please add Import & Export Custom Rules/Settings
]]>Hi, first of all thank you for your helpful plugin. Could you please – in the next update – add an option that allow us to delete blocked request list in the ‘Firewall Request Monitor‘ menu ? Thanks in advance for your answer and keep up the good work !
Regards,
]]>