Mugsy

Thanks for the follow-up. Your previous suggestion of using the “Exclude List” in the Advanced Options seems to have resolved the issue.

The false positives I was encountering were almost entirely from a plugin that added gif emoji’s to the text editor (the “gif’s” were what WF was flagging.)

Since there really is no other way to do that w/o using gif’s, changing plugins probably wouldn’t help.

Thx.

Thank you for the reply.

Yes, the *.gif” images are indeed part of a plugin. Adding the exclusion took me from “160 detected threats” to just “78” (most “Low” threat.) Thanks.

Question though: Every scan, I get messages similar to this:

“The Plugin “Captcha” has been removed from www.ads-software.com.”

Does this mean Wordfence removed these items as a threat, or it’s a threat because it’s missing and needs to be restored?

TIA

Thx for the reply.

Reuploading will be a bit difficult as it will all have to be done via FTP.

The “.htaccess” & “wp-config.php” appear to be untouched from the originals.

I replaced two flagged files from copies off my own (clean) PC and have asked the host to rescan them to see if they are still being flagged as “infected” to rule out “false positives”.

It’s incredibly annoying that this happens nearly after every update. If files being installed via auto-update from WP are indeed infected, that is a MAJOR concern. ??

• This reply was modified 2 years, 3 months ago by Mugsy.

Ah. Thx for the reply.

So if I create a new theme using the new FSE Theme template, there will be an import/export option?

Good points, though I don’t think anyone is reading my old blog on an iPhone. ??

I’ll see if I can’t create some quality H.264 files that aren’t huge.

Thanks. “Small size” & “widest support” is what I’m looking for. H.264 has the most support, but I think the files are among the largest.

Thanks. From what I can tell, “.WebM” seems to be the most common substitute for .flv, correct?

Any recommendations?

Thx for the reply.

The editor changed with the last update and I didn’t notice the “Visual” & “Text” tabs on the upper right of the edit window. My goof. The last auto-update of WP massively reformatted my last post. I have no idea why. But there was absolutely no way to fix it from the “Visual” editor. It could only be fixed in code.

And even after editing the code, if you then switch back to the “Visual” editor to preview your changes (to an already published page), it FORGETS your changes and reloads the “published” page! ??

Note though that while the “Source code” views in “Visual” let you type, any changes made in those windows are ignored. The only way to correct the page was to publish my changes sight unseen. What a pain.

Thanks.

PS: No, this is not an Alpha/Beta version of WP.

• This reply was modified 4 years, 5 months ago by Mugsy.

Fantastic! Works like a charm.

I only had to edit the “single.php” & “index.php” files to insert the “the_date()” code below “the_title()”. Looks great (which you can check out at my link.)

Thx.

The original theme was downloaded (for free) from the www.ads-software.com themes page nearly a decade ago and has been modified extensively since then by me.

All I request is information regarding a possible code for “Publication Date”.

• This reply was modified 7 years ago by Mugsy.

Thanks. I did not know the “Timeout” could be disabled (and it seems to be not working 100% at its default setting if it were triggered so quickly on the second try.)

I re-enabled the captcha & unchecked the Timeout under the “Advanced” tab.

I’ll have to test to see if it resolves the issue. Thx.

I’m also having this same problem (confirmation link goes to a nonexistent page & 404 error.)

I don’t see where a “fix” is explained. Help please.

“webbrewers”: Fortunately, I’m not having a problem with spam comments, just fake registrations. A simple math “challenge” seems to be all I need there.

“Ross”: I just checked my logs and I noticed a few interesting things:

o All of the fake registrations (in the past week at least) took place just after midnight (between 12:02am & 12:20am).

o The time between hitting the Registration form (GET) and clicking Submit (POST) is less than 1 second.

o The bots rarely (but not always) pass through another page first, going straight for “wp-login.php?action=register”.

The browser used by the bot is sometimes reported as Mozilla and sometimes Opera, always a Windows based system, and the IP’s are not static, so I can’t block them that way.

If nothing else, I think I’ve confirmed these aren’t human “hired guns” registering by hand for some sleazy advertising agency.

Thx.

MugsysRapSheet.com

As noted in my originalpost, registrations follow a very specific pattern suggesting a bot: FirstnameLastname all on one line. Lastname field is always blank.

I tried rejecting registrations that don’t enter anything in the “Last Name” field and they still got through, suggesting they are by-passing the Registration form entirely.

For years, they always used webmail domains. First “Hotmail.com” and “Yahoo.com”. Later “Outlook.com” and “Yahoomail.com”. Now it is random sales domains like “buy-cheap-stuff.com” or “bobsnicknacks.com”.

No question these are “bots” and almost certain they are bypassing the Registration form entirely.