Magic Buttons and Admin Notice Issue

I did a search for it and i couldn’t seem to find the query code you mentioned, what should i do?

Well then BPS is not really active on your site if you are not using the BPS Query String security filters since they are the primary security filters for your site. You can either customize your root .htaccess further to include BPS .htaccess code or you can just uninstall BPS if you no longer want to use it.

I think BPS is the best plugin for WordPress! How would i include this code in my hta? i really want to use BPS for my website, do i just copy and paste that code above in the bottom of my root hta file? Your guidance is truly appreciated.

What I would do is to use BPS Custom Code to create my own customized root .htaccess file since you have additional custom .htaccess code and also .htaccess code from the BWPS plugin. Go to the ait-pro.com website, click on the Contact page and use the email address to send your root .htaccess file. Send the root .htaccess file as an attachment. Then I will tell you where all of your custom .htaccess code goes in each BPS Custom Code text box.

Okay thank you very much i have sent you the email. Im also uninstalling BetterWP Security. Again your plugin is amazing, i am very grateful for this wonderful plugin you’ve created.

I have created a new root .htaccess file for you and put all the code in the correct places in that file with notes about where you would add that .htaccess code to each specific BPS Custom Code text box.

Can this thread be resolved now? If so, please resolve this thread. Thanks.

Sorry mate, i just got back from work. Im about to start following your hta instructions i will update on this!

Hi i ran into a couple of blockades, can you help me diagnose how i should do this.
Do i include the last 4 lines of this QUERY STRING code in the custom code area?

RewriteCond %{QUERY_STRING} (sp_executesql) [NC]
RewriteRule ^(.*)$ – [F,L]
# END BPSQSE BPS QUERY STRING EXPLOITS
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
# WP REWRITE LOOP END

Also in the custom code area for DENY BROWSER Access:

do i include the last 2 lines of this code?

# DENY BROWSER ACCESS TO THESE FILES
# wp-config.php, bb-config.php, php.ini, php5.ini, readme.html
# Replace Allow from 88.77.66.55 with your current IP address and remove the
# pound sign # from in front of the Allow from line of code below to access these
# files directly from your browser.

<FilesMatch “^(wp-config\.php|php\.ini|php5\.ini|readme\.html|bb-config\.php)”>
Order allow,deny
Deny from all
#Allow from 88.77.66.55
</FilesMatch>

# IMPORTANT!!! DO NOT DELETE!!! the END WordPress text below
# END WordPress

Thanks for your help thus far very helpful!

Do i include the last 4 lines of this QUERY STRING code in the custom code area?

No, the last 3 lines are not part of the Query String Filters and are the end of the WordPress Rewrite Loop.

You are not doing anything at all with the Deny Browser section of code. Only go by the instructions I have included in the .htaccess file. If you do not see instructions directly above a section of code then do not do anything with that code.

I recommend that you manually test the .htaccess file I sent you first before you add all the code to Custom Code and create a new root .htaccess file. Make a copy of your current root .htaccess file and then upload the .htaccess file I sent you. If everything works then you know that everything will also work after you add all the code to BPS Custom Code and create a new root .htaccess file.

Okay thank you for clearing that up, i finished your instructions and then created the hta file and activated and now my website is protected =D i am very happy! Issue resolved ??

Great! Thanks.