Spam Security Plugin Conflict – Dynamic IPs

  • Hi,
    First of all, thank you for creating a fantastic plugin! I’ve just installed it today and am testing it now.

    Have realized that some of the keywords used in the search box on my website (please visit https://tradablepatterns.com from your mobile) produces the following webpage warning which appear to be coming from my security plugin WP Cerber:

    “We’re sorry, you are not allowed to proceed.

    Your request looks suspiciously similar to automated requests from spam posting software or it has been denied by a security policy configured by the website administrator.

    If you believe you should be able to perform the request, please let us know.”

    Out of curiosity, when a keyword search is submitted from a mobile device, does Ajax Search Lite submit the request to my website from different IP addresses originating from Ajax’s end? Each time that my security plugin displays the error warning message above, it appears to be identifying the search submission as originating from different IP addresses. My mobile phone IP has been set to static (as opposed to DHCP), so I’d assume that my WP Cerber would see the search request coming from my mobile’s static IP, as opposed to different IPs each time the error above displays.

    Looking forward to your response, and thank you in advance!

    Darren

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author wpdreams

    (@wpdreams)

    Hi Darren,

    Thank you for your kind words!

    No, the plugin does not do any of that, it is always the client (eg Mobile or desktop) initiating the request, the plugin does not set nor changes this information.
    The firewall probably has the public IP address or combination of IP and request headers of the devices somewhere in a blacklist or spamlist, and finds it suspicious.
    Try adding a firewall exception for the mobile IP or the request data, it should do the trick.

    Best,
    Ernest M.

    Thread Starter darrenchu

    (@darrenchu)

    Thanks for the quick response Ernest!
    It appears that the security plugin is generating false positives. The security plugin has an option to allow Ajax which by default, was already selected. I’ll keep you posted once the WP Cerber’s author comes up w/ some feedback on any other plugin config settings I can change to relax the spam tagging.

    Cheers,
    Darren

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Spam Security Plugin Conflict – Dynamic IPs’ is closed to new replies.