Suspicious file reported in UpdraftPlus

  • Resolved boardboss

    (@boardboss)


    3 years, 5 months ago

    Hi – A recent malware scan by a security plugin resulted in a report of a suspicious function in the file bootstrap.php. The line of code flagged is: $our_keys[$updraft_key_index][‘publickey_remote’] = base64_decode($_GET[‘public_key’]);

    I know from experience and research base64_decode is not the huge security risk some might think it is. That said, your file is being flagged so I wanted to ask about it before I simply click the ‘ignore’ option in the malware scanner.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Contributor bcrodua

    (@bcrodua)

    Hi,

    I would recommend re-installing the plugin and make sure you download a fresh copy of the plugin to make sure that you have a clean UpdraftPlus install.

    If you still get the same message from your host/server admin then that is false positive report.

    Regards,
    Bryle

    Thread Starter boardboss

    (@boardboss)

    I just downloaded the plugin and checked the file in question. The same code is in it: $our_keys[$updraft_key_index][‘publickey_remote’] = base64_decode($_GET[‘public_key’]);

    Since this code is in the fresh download, I know it is there by design. Whether that design is good or bad I do not know, although since you are a plugin contributor I will go ahead and ignore this suspicious file in my malware scanner.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Suspicious file reported in UpdraftPlus’ is closed to new replies.