Protection against malicious files?

  • Resolved rabox66

    (@rabox66)


    2 years, 4 months ago

    Hi,
    I would like to know if this plugin offers any kind of protection against the upload of malicious files. I need to use CF7 on a website and people are asked to upload files that I will work with. I am actually using a great number of allowed files, some of them known (.pdf,docx) others very specific and hardly known.

    The main point is that I want to avoid the possibility of uploading malicious code. How does Wordfence deal with that problem? It was recommended by a colleague, but I do not see any areas in the backend that are dealing with the topic.

    Thanks
    Raphael

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @rabox66, thanks for getting in touch!

    Wordfence notably has a large number of firewall rules that can be viewed in Wordfence > All Options > Advanced Firewall Options by expanding the “Rules” section. The ones focused around file uploads are Malicious File Upload, Malicious File Upload (Patterns) and Malicious File Upload (PHP). Combined, these rules check for things like files containing code masquerading as another filetype such as JPG, or just malicious scripts and filetypes in general.

    Sometimes, specific filetypes need to be enabled through your WordPress settings/config files to even be allowed during an upload.

    You may find our free Learning Center useful to learn more about how Wordfence can protect your site: https://www.wordfence.com/learn/

    Thanks,

    Peter.

    Thread Starter rabox66

    (@rabox66)

    Hi Peter,
    Thank you for your answer. If I understood you right, it is necessary to activate in the area Wordfence > All Options > Advanced Firewall Options all rules (e.g. SQL injection, Malicious file upload…) in order to have basic protection against the upload of malicious files.
    Thanks
    Raphael

    Plugin Support wfpeter

    (@wfpeter)

    These should be enabled by default, but yes you are correct.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Protection against malicious files?’ is closed to new replies.