• Resolved Caleb

    (@crudhunter)


    On the Blocking page, no blocks are listed at all. It consistently shows “No blocks are currently active.”. Even after manually blocking adding a new a network through the Whois Interface, nothing ever shows up. (Done through “Whois”, since you also removed the links to block directly from the Live Traffic page. Another bad interface change.)

    As per the new interface, nothing is supposedly expected to be blocked, since apparently the block list is empty.
    Despite this, it seems that at least some of the blocks seen in Live traffic are directly related to my existing network blocks, so at least some of the old config must still be functional. Despite the new interface being unable to show what that config actually is.

    Also, I FINALLY found the “Immediately block IPs that access these URLs” setting after much clicking around.
    Now hidden under “Advanced settings” on the Firewall page. Somewhat annoying place, since this is a much used setting that in my setups frequently blocks many times more than the base WordFence rules ever does. (My Dashboard Firewall summary as usual show the message “No blocks have been recorded.” ?? )

    But I think the layout/CSS for that Advanced Firewall settings screen needs some rethinking.
    The two columns in that “table” (1: Your header/explanation, 2: The actual list of bad URLS) are set up seriously disproportionate.

    Your fixed header text takes up about 80% of the width (leaving most screen space as unused white-space in that whole column), while the only worthwhile information (the column with the actual configured list of bad URLs) only gets the remaining smaller space (< 200 pixels I think). Which first off makes the list almost completely unreadable, since the URLs fold and blend over multiple short lines, instead of being listed as one URL per line. And secondly, since the list of URLs is quite long, and you header only needs one line really, the “header” columns becomes nothing but a full page of empty white-space covering most of the table width.

    I am sorry, but as “pretty” as it was attempted to be, it is still better to simply stack those type of fields top-down, not side-by-side.
    The one-line header shown directly ABOVE a full-width text field for entering the URLs would be much better. Makes full use of actual screen space. The current format is completely unreadable and wastes most of the screen as mere white-space.

Viewing 5 replies - 1 through 5 (of 5 total)
  • Thread Starter Caleb

    (@crudhunter)

    The “Advanced settings” I am referring to up above is of course now “All Firewall Settings”. A second-level deep to get to the real settings, past the initial Firewall fluff overview page. Personally, I would have preferred a more direct path, since the fluff overview page has no information on it I would need to see. My WordFence firewall blocks are always reported as empty. But, that’s just my preference. Irrelevant.

    Also, On the separate hint of the lost “block network” in Live Traffic.
    I was wrong. You CAN actually block networks directly from the new Live traffic page, without cutting/pasting.

    1. First, click the “Eye” symbol, to show expanded info for that particular access line.
    2. Then click “Run Whois”, which now has a (nice) pop-up on the Live Traffic screen.
    3. THEN you can click Block Network..

    Not quite a logical path, at first thought.
    The “Block IP” (single IP) button is generally useless, except for short-term block of a heavy offender).. I cannot imagine many people wasting their time blocking individual IPs, since that would be a never-ending and generally useless job. Since they have changed tomorrow. Why I used the “Block Network” link in the old interface to swat out bad server farms/clouds instead.

    Nevertheless, having only the “Run Whois” button, even for blocking networks, is just fine (now that I know it’s dual functionality). That is, IF it actually works. ??
    But since no part of one’s configuration show up on the Blocking page anymore, it is hard to know if a block was saved to permanent as expected. As stated above, that page now always reports “No blocks are currently active.”
    It neither shows IPs/Networks to be blocked, nor other types, such as User-Agent blocks.
    I would assume it should dump out the same table info as the old interface.

    Thread Starter Caleb

    (@crudhunter)

    As I later found out, the reason for the non-functional Blocking page (and query failures on other pages) is the old core bugs that still hang around.

    As shown here:

    https://www.ads-software.com/support/topic/live-traffic-and-blocking-list-old-interface/#post-9914076

    Hi Caleb,
    I checked your input in that other thread along with the information you provided in this there as well and I can tell that this issue is related to the old database table prefix issue we discussed here and here, unfortunately, no fix was implemented to address this issue in the recent 7.0.1 version (which was focused only on the UI).

    I will update the internal tickets we have regarding this issue with your input in this thread.

    Thanks.

    Thread Starter Caleb

    (@crudhunter)

    @wfalaa, Sorry, but Unfortunately, not the case.

    In the original scenario from 7 months back, you could excuse the DB/table failures with the fact that my system over time had moved the network-site (domain that has the WordFence interface) on to Blog-ID 3 (because the original site was deleted), not ID 1 as it would have been originally. So you never wanted to fix it, because it was deemed an oddity of older installs of me and a few others.

    But as I mentioned already in my very last update in that other new thread you link to:

    “Notice, this is on a CLEAN install.. Having no missing numbered blogs, and with the Network (controlling site) being the FIRST site in the system.”

    This is a clean, fresh DB. A WordPress system only a couple of weeks old, running from a fresh database.. Since y’all never seems to want to fix your DB issues, despite how easy it is to fix, I a few weeks back “cleaned house” completely.
    I got tired of having to fix your code over or delay updates every time an otherwise irrelevant “scan related” update came raining down.

    So.. I XML backed up posts, and completely restarted both wp-config.php and the database.
    Restarted WordPress as a from scratch, answer all the dumb WP questions over, totally fresh WordPress install into a brand-new and completely empty database.

    The system where the failures I mention as happening now, has NO deleted sites, and the domain running Network Admin (and hence all WordFence) is the initial site. Hence on blog-id 1 (not 3 as in the old setup).
    The ONLY thing special now, is that it is a (simple and fresh) multi-site install. Not a simplistic single-blog install.

    The reason for your failed DB accesses is (as it has always been) because your code is SET UP TO FAIL. It stares right in the face at anyone that dare read (and understand) the current code.

    You install tables using one kind of code (hard-coded SQL to make network global tables with no blog prefixes. e.g. prefix_wfBlocks, not prefix_1_wfBlocks), and then in all your code keep accessing your tables with multiple variations of BLOG/SITE SPECIFIC code, such as when using get_blog_prefix(), network prefix, and such.
    Which is completely illogical, as I have mentioned many times before. WordFence’s PRIVATE Tables are NEVER blog local. They are always HARD-CODED to be GLOBAL, independent of install type..
    (No blog number specific table prefixes. Your install code is made that way.)

    Second to that, y’all still haven’t fixed wfSchema, holding all the original table structures to be created. A Schema for a fresh DB install is supposed to install the latest versions of tables. The required tables for the current version. Why it is called a fresh install! Also why you originally used the name “Schema”. Someone back then knew some DB terminology. ??

    Instead, your code still install the plugin on a fresh empty database by installing a table Schema that is maybe 20 to 30 WordFence versions old, and then try to “upgrade” the individual tables into submission to fit the latest WordFence requirements by both adding the now necessary fields and removing obsolete ones.
    I don’t want to go back to read your code again right now, but by the time the upgrade code tries to “fix” the freshly created tables (but very old in structure) by adding and removing (just installed) fields to tables, it might be too late already. I can’t remember if your upgrade code plays with get_blog_prefix() and such as well, which would likely make that fail in some cases as well. It might not be.

    But look at the very last update on that other thread. See https://www.ads-software.com/support/topic/live-traffic-and-blocking-list-old-interface/#post-9914301

    Look at the list of table names it tries to use. All over the place.
    As it states in that update:

    “A sampling of failing queries. This is from opening the “Firewall” tab.
    Notice that it tries to access tables with both “pref_0_” and “pref_1_” table prefixes.
    None of which can ever exist, since all WordFence tables are installed (hard-coded) with only a “pref_” prefix. No numbers involved.

    Notice, this is on a CLEAN install.. Having no missing numbered blogs, and with the Network (controlling site) being the FIRST site in the system.

    Thread Starter Caleb

    (@crudhunter)

    @wfalaa, So.. I decided to re-test the WordFence setup and look at the code again to refresh my original memory from 7 months ago.

    ? I created a brand-new new multi-site, installed with freshly downloaded WordPress and WordFence, empty DB.
    ? No themes installed other than what is embedded in WordPress archive.
    ? ONLY plugin installed, other than WordFence, was “Debug Bar” so I could more easily watch for any DB failures..

    Then into WordFence admin. Magically, no failing DB accesses on Blocking or firewall pages. And adding a new blocked IP worked. Showing itself on the Blocking page as expected.

    My normal install (where everything is failing) is also a fresh install. With the Network domain on a clean BLOG-ID 1. Now, why is that. There is one MAJOR difference between the two fresh installs. That the normal system of course has all the usual plugins and themes installed as well..

    Then back into your code to refresh my memory of the many ways your code tries to access your private tables.

    Although, if this was my code, I would do some SERIOUS refactoring to make the code logical, less confusing to maintainers, and more consistent, there a some ways that work despite lack of logic, and at least one method that SHOULD NEVER EXIST.

    First Method 1. The access method that MUST be changed if you want your code to work consistently without seemingly random DB failures on various sites..

    In wfActivityReport.php and wordfenceHash.php you attempt to access your private tables (always installed off $wpdb->base_prefix) using two variations of “$wpdb->prefix”. As “$wpdb->prefix” directly, and as “$this->db->prefix”, where “$this->db” always represents a link to the system-global “$wpdb”.

    In wfNotifications.php directly from the systems global $wpdb as “$wpdb-prefix”.

    This direct access of $wpdb->prefix (using two different methods no less) MUST change if you want your code to work consistently.

    The global $wpdb and it’s property “prefix” is NOT your structure, NOT your property, and you have no control over its content. No control over whether “prefix” actually at a given time represent the value of “base_prefix” (no blog-number ID suffix) by the time your code runs, which is what you ALWAYS need to find your tables. Under some ideal circumstances with no outside intervention (like my new empty install with no other code), it can equal “base_prefix”, but in most others it cannot be trusted. The purpose of “prefix” is not normally to point to base_prefix. It is the value to current Blog tables.

    $wpdb->prefix can be impacted through side-effects from plugins/themes/filter functions/actions/code that may run before you. $wpdb->prefix normal content is != base_prefix on a busy running system. $wpdb’s property “prefix” will usually be set to any of various “dbprefix_#_” pointing to a blog-local prefix.

    Here are all the other ways your code uses to “find” your private tables..

    For readability and easier maintenance, personally I would restructure/refactor, but in fact none of these methods fail, I believe. (By accident more than long-term forethought one might imagine. ?? )

    Method 2: in wordfenceHash.php. Calls on your private tables using code like

    “$this->db->prefix()->tablename”

    Mind the potential confusion. Notice the “()”s. In the other classes mentioned above “$this->db” always refers to WordPress’ own $wpdb and “prefix” is a variable property.
    Here, instead it refers to class wfDB(), your private DB structure, and “prefix” is a function.

    But, since prefix() ALWAYS simply returns the value of the global variable “$wpdb->base_prefix”, it actually always works, as “base_prefix” is always what you need.
    If I were the maintainer, I would refactor to more maintainable code, but not physically necessary.

    Method 3: wordfenceClass.php, wfNotification.php, and wordfenceScanner.php. Using wfDB::networkPrefix() to find a prefix.

    networkPrefix tries to find the prefix for your private tables by calling “get_blog_prefix(0)”.
    The “0” parameter is important here, because in a multi-site setup, that makes get_blog_prefix() always return “$wpdb->base_prefix”. Since that is what you need, it always works.
    Again, refactoring for consistency and to stop all the many access methods might give better code, but this actually always works.

    Method 4: used in variation in almost all DB related classes/source files.
    As a hard-coded “$this->db->base_prefix”.

    This obviously works. As long as your private “$this->db” always point to the global “$wpdb” and not a wfDB() structure, like it does in some locations, it is the equivalent of saying “$wpdb->base_prefix”.
    Since your tables were all installed off a hard-coded “$wpdb->base_prefix”, it is the right location.

    Method 5: Used in many files. Using global “$wpdb->base_prefix” directly.

    Always works, because that is how the tables were installed.

    Method 6: abstract function getTable() used to find the wfHits table.

    Returns $this->getDB()->base_prefix . ‘wfHits’.

    Always works since “getDB()” always returns global $wpdb. So this is the equivalent to “$wpdb->base_prefix” (Method 5) and indirectly to Method 4 as well. Another confusing way to find table prefixes added, but not wrong.

    So to recap.. Method 1 (going for any value of “$wpdb->prefix” is INVALID and must be changed if you want WordFence to work in multisite environments in a consistent manner (where other plugins/actions/filters/…) do not affect your workings in seemingly random ways. As “prefix” cannot be trusted to always point to “base_prefix”

    Methods 2 – 6 are merely confusing to anyone trying to read or maintain all that code, but all actually work out, because all methods, through a variety of paths, all use “$wpdb->base_prefix”.
    Since that is where you installed your tables, that is where they will be found.

    If it were my code, I would do some serious refactoring for consistency, but thats not necessary to fix the failures caused by method 1.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Where did all the existing network/IP/URL blocks go?’ is closed to new replies.