Eve

Hi chrislyles,

Please check the permissions for the /wp-content/uploads/sucuri and the settings.php file in that directory. Are they writable? The settings.php file is where that info is stored.

Thanks!
Eve

Hi Beth,

The plugin works with 4.7.2, lots of Sucuri employees are using it without issues. ??

Kind regards,
Eve

Hi sarumbear,

Could you check the /wp-content/uploads/sucuri (new location) folder permissions? What is the value? I’m not sure what paths the other plugins use.

The plugin shouldn’t need any manual configuration for directory changes. Did the URL change?

Kind regards,
Eve

Hi sarumbear,

Have you checked the permissions of the new /wp-content/uploads/sucuri folder? Is it writable?

Kind regards,
Eve

Hi blkcatgal,

You’re very welcome. Yes, subdomain does equal new domain, in this case. ?? You can follow the instructions above.

Kind regards,
Eve

Hi blkcatgal,

You do need a new API key for a different domain.

1. You can delete the existing key.
2. Then email [email protected] with your email and domain, we’ll send you a new key.
3. You can add the new key using the manual activation (just below Plugin API Key: (not set)).

I hope this helps!

Thanks,
Eve

Hi bws999,

The good news is, the dev site is still working. ?? I’d recommend starting over (delete the live site ) and re-migrating using the ‘Moving Directories On Your Existing Server’ section in this guide:

https://codex.www.ads-software.com/Moving_WordPress

Good luck!
Eve

Hi psytanium,

You can undo the uploads directory hardening by deleting or renaming the .htaccess file in your /wp-content/uploads directory.

I hope this helps!

Kind regards,
Eve

Hi Paul,

The plugin hardens using .htaccess rules in the wp-content directory. You can override those by adding your own .htaccess file in the hybridauth directory. This would allow access to all files:

<Files *>
<IfModule !mod_authz_core.c>
Allow from all
</IfModule>
<IfModule mod_authz_core.c>
Require all granted
</IfModule>
</Files>

I hope that helps!

Thanks,
Eve

Hi Stevie77n,

The editor is enabled by default. You can disable it with the Sucuri plugin or by manually adding this line to wp-config.php

define(‘DISALLOW_FILE_EDIT’, true);

You shouldn’t need to set that to false, just comment out or delete the line to enable the editor.

Thanks,
Eve

Hi rfollett,

Sorry about the trouble with your site. We wouldn’t be able to advise on any specifics of what happened there. However, we always recommend changing the passwords to all website access points after an incident.

https://sucuri.net/website-security/what-to-do-after-a-website-hack

Best of luck,
Eve

Hi Hans-Gerd,

Were you able to reproduce the problem with all of your other plugins deactivated?

Kind regards,
Eve

Hi imthatguydavid,

The plugin uses the server’s time zone. But I’ll pass along the suggestion to change that to the WordPress setting.

We’re glad you like the plugin! ??

Thanks!
Eve

Hi Peter,

We’re preparing for plugin updates later this quarter. I’ll make sure the developers have a look at the WP REST API implementation.

Thanks!
Eve

Hi Larso30,

The file editor is disabled by the plugin by adding the following to site’s wp-config.php file:

define(‘DISALLOW_FILE_EDIT’, TRUE);

When you revert hardening and allow the editor that line is removed.

I would recommend checking the wp-config.php file permissions. Or making the edit manually.

Kind regards,
Eve