6Scan

Sure thing, DDCoating. When you install the plugin, our servers perform a periodical rescan of your site to see if there are new threats to be dealt with, and also “pings” the plugin often just to make sure it has the latest configuration. I’m guessing you removed the plugin’s files without going through an uninstall process, so our servers don’t actually know you are no longer using the 6Scan plugin. Because many of our sites will temporarily go down for a while (e.g. for maintenance), we will continue to try accessing the site for quite a while before we give up.

You can easily stop this by logging in to your 6Scan Site Manager (https://6scan.com/login) and removing the site you no longer want to be accessed; however, in your case, I do recommend you just give us the information at [email protected] and we’ll be happy to help you out.

I will also re-request the information from my previous message – it would be tremendously helpful if you could provide us more information on how the plugin affected your site, so we can be sure to provide the best experience for our users in the future.

Thanks.

Hi DDCoating,

The files you mention are required in order to allow our scan to complete successfully without having other plugins (such as caching plugins) interfere with it. They are also used later on to help you fix the problems found by the scan.

These files are not intended to interfere with proper site operation, and have been tested on tens of thousands of sites successfully. If you were having a problem, I would greatly appreciate it if you could send your site URL and any other details to us at [email protected] – we’d like to investigate and understand why that could have happened.

Thanks.

Good day Viktor,

Thank you for pointing that out.
We have quoted the function names. What did you mean by the trailing whitespaces?

Thank you!

Hi ClairvoyanceForYou,

If our scan found this security issue on your WordPress site, then yes, you should follow the fix instructions to make sure that you patch it up so it isn’t used for malicious purposes.

If you run into any problems, you are welcome to contact [email protected] and we’ll happily help you. (For security reasons, please don’t post details of your site on this public forum.) Of course, if you don’t feel comfortable fixing the problem on your own, you can also look at our automatic fix options, which will fix this (and any other) security issues on your site automatically.

Thanks for using 6Scan!

Good day,

If the problem still exists, please write to our support email.

Thank you

Hi protrace2000,

We haven’t heard from you via [email protected]. Please do let us know the details so we can investigate and fix the problem.

Thanks!

Hi protrace2000,

Could you please send your email address and website domain to [email protected] so we can look into your situation?

Thanks.

Kelson, thanks for your help. We’re looking into the problem. We suspect it may be a caching issue, but in any case we’ll report back here with more information.

Hey Kelson,

Could you tell us the URL of your site? We’d like to check the situation and see how that could have happened. If you don’t want to post publicly, you can send it to us at [email protected].

Thanks.

Hey Dane,

Can you let us know which site this was for? We typically make sure there is a valid site before sending a new vulnerability notification.

You can send it to us at [email protected] if you don’t want to post it here.

Thanks.

Hey tzeldin88,

To address this issue, we made a change to the plugin to ensure it complies with the applicable www.ads-software.com policy in all circumstances, not sending any user information to any external server without the user’s explicit consent. The change was made in version 2.3.0 (see our Changelog for details).

Let us know if you have any further questions.

Hello, I just wanted to write a message to make sure that everything has been resolved to your satisfaction. Looking through our support tickets, it looks like we were able to fully refund you (please let us know if there is still a miscommunication around this matter). We are sorry that 6Scan did not work out for you, and please let us know if we can help you with anything further.

Thanks ellsweb! We’ll take a look at how the other plugins work, and look at your suggestions as well to see if maybe it’s simpler than we thought. Thanks again for your help!

Hey ellsweb,

While I wish it was that simple, adding multisite raises a slew of issues we’re battling with. Here are a few example questions we need to answer:

• Who administers 6Scan, the super administrator or the sites’ adminstrators? In order to comply with some sites’ management policies, we might need to actually have two different dashboards, one for each.
• What happens if a site administrator wants to fix a vulnerability in a plugin that’s been installed on all sites by the super administrator? This would entail modifying files for other sites, which they should not be able to do, but we can’t apply a fix only for a specific site on such plugins. Conversely, what happens if the super administrator fixes a vulnerability (manually or automatically) but then the site administrator wants to undo that fix?
• What if a site administrator wants 6Scan to scan their site, but the super administrator does not? We can’t scan only a single site, because much of the files are common to all sites. We’d end up getting complaints from the super administrator for scanning his files without his permission — something we take very seriously.

So far it seems that no matter which answers we chose, we’d be working against policies of many other users. We’re still trying to figure out what’s right — any input we could get from the community on these questions would be much appreciated!

Hi all,

We are very excited to get the plugin working with multisite, but we want to make sure we do it the right way. We’re still working on it – we’ll make sure to update as soon as it’s ready.

Thanks!