Wordfence and phpBB problem
-
I have phpBB installed in a directory of its own. I can log in and out of phpBB without a problem right up until I attempt to get into the administration control panel where it makes you authenticate a second time and then I get a “403 Forbidden A potentially unsafe operation has been detected in your request to this site.” If I disable Wordfence I can authenticate fine. Oddly enough, if I am logged into WordPress as the admin I do not have this problem but if I log out of WordPress the problem resurfaces.
I attempted to put /forum/adm/index.php as an exception in the firewall but that has not worked.
Any help appreciated.
Allan
-
Hi Allan,
the reason for this behavior is that WordPress admins are exempt from Firewall rules. If you try to use the phpBB admin via another browser in which you are not logged in to WordPress and thus trigger the Firewall block you should in a browser where you are logged in be able to see a block happening in the Wordfence “Live Traffic” view. You can then right there choose to white list the action that got blocked by clicking “Whitelist param from Firewall”.Unless you want to keep the URL blocked from anyone who is not logged in to WordPress of course. It’s kind of a second layer of security I suppose. ??
- The topic ‘Wordfence and phpBB problem’ is closed to new replies.
