netcentsii

.htacess file modified, now includes:

text/x-generic .htaccess ( UTF-8 Unicode English text )

# BEGIN s2Member GZIP exclusions
<IfModule rewrite_module>
RewriteEngine On
RewriteBase /
RewriteCond %{QUERY_STRING} (^|\?|&)s2member_file_download\=.+ [OR]
RewriteCond %{QUERY_STRING} (^|\?|&)no-gzip\=1
RewriteRule .* – [E=no-gzip:1]
</IfModule>
# END s2Member GZIP exclusions

# BEGIN litespeed noabort
<IfModule rewrite_module>
RewriteEngine On
RewriteRule .* – [E=noabort:1]
</IfModule>
# END litespeed noabort

# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /sandbox
RewriteRule ^index\.php$ – [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>

# END WordPress

# Wordfence WAF
<IfModule LiteSpeed>
php_value auto_prepend_file ‘/home/wtradio/public_html/sandbox/wordfence-waf.php’
</IfModule>
<Files “.user.ini”>
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
</Files>

# END Wordfence WAF
# php — BEGIN cPanel-generated handler, do not edit
# Set the “ea-php54” package as the default “PHP” programming language.
<IfModule mime_module>
AddType application/x-httpd-ea-php54 .php .php5 .phtml
</IfModule>
# php — END cPanel-generated handler, do not edit

1. Adjusted the max_execution_time to 15 as instructed, reran SCAn, no significant change.

2. Adjusted the max_execution_time to 24 which is 80% of diagnostics page value.
Scans went further then stalled at step “Scanning for unknown files in wp-admin and wp-includes.”

[Apr 27 14:40:09] Preparing a new scan. Done.
[Apr 27 14:40:09] Remote scan of public facing site only available to paid members Paid Members Only
[Apr 27 14:40:11] Check if your site is being Spamvertized is for paid members only Paid Members Only
[Apr 27 14:40:13] Checking if your IP is generating spam is for paid members only Paid Members Only
[Apr 27 14:40:15] Checking if your site is on the Google Safe Browsing list is for paid members only Paid Members Only
[Apr 27 14:40:17] Checking for the most secure way to get IPs Secure.
[Apr 27 14:40:18] Fetching core, theme and plugin file signatures from Wordfence Success.
[Apr 27 14:40:19] Fetching list of known malware files from Wordfence Success.

[Apr 27 14:40:20] Comparing core WordPress files against originals in repository
[Apr 27 14:40:20] Comparing open source themes against www.ads-software.com originals
[Apr 27 14:40:20] Comparing plugins against www.ads-software.com originals
[Apr 27 14:40:20] Scanning for known malware files
[Apr 27 14:40:20] Scanning for unknown files in wp-admin and wp-includes

I can create a PAGE with this URL:

Permalink: https://netcentsii.com/nosb-alliance/

I’d like this FORUM to appear at this URL but don;t know how to work that into the WP Site or bbPress configuration.

———

David:
I see that DEBUGGING is on. But I don’t know who turned it on, unless it was part of the Installation Instructions several versions back when I installed the plugin.

VA

I found those users listed in the WordPress Users list, thanks.

100% of the listed members have role SUBSCRIBER.

Yet, I don’t have a single PAYPAL paying subscriber. I guess I need to dig into the ROLEs and ensure Paypal link is working properly.

I deleted WordFence directory and everything under it.

I now have access to my site again.

I see this on the premium site and will try it.

‘Here’s how you regain access to your site: The easiest way to solve this problem immediately is to simply delete the Wordfence files from your WordPress installation. You can do that as follows:

Connect to your server using the method your normally use to upload files. Most people either use FTP or SFTP to do this.
Remove the Wordfence directory (or folder if you prefer). If your site has the standard WordPress structure, you can do this by simply deleting the wp-content/plugins/wordfence/ directory and everything underneath it.

The above procedure will immediately unlock your site. If you are still seeing a message that you’re locked out, make sure you disable any caching plugins like W3 Total Cache, or clear their cache. If you can’t access the site to disable the caching plugin, you may have to temporarily rename the caching plugin directory to disable it. You may also have to clear any caches on a front-end caching proxy if you have an advanced configuration. ‘

Wow, incredible. I;d think the amount of time I spent looking for something like that, I’d have stumbled across that HOVER function.

Thanks very much.

Thanks Ross, very much.

I added the suggested text to my htaccess:
<IfModule litespeed>
RewriteEngine on
RewriteRule .* – [E=noabort:1]
</IfModule>

The next scan completed completely. First one!

Thanks everyone.

I added the suggested text to my htaccess:
<IfModule litespeed>
RewriteEngine on
RewriteRule .* – [E=noabort:1]
</IfModule>

The next scan completed completely. First one!

Thanks everyone.

My htaccess reads:

# BEGIN s2Member GZIP exclusions
<IfModule rewrite_module>
RewriteEngine On
RewriteBase /sandbox/
RewriteCond %{QUERY_STRING} (^|\?|&)s2member_file_download\=.+ [OR]
RewriteCond %{QUERY_STRING} (^|\?|&)no-gzip\=1
RewriteRule .* – [E=no-gzip:1]
</IfModule>
# END s2Member GZIP exclusions

# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /sandbox/
RewriteRule ^index\.php$ – [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /sandbox/index.php [L]
</IfModule>

# END WordPress

Latest update FAILED during update:
—————————————-
Update Plugin
Downloading update from https://downloads.www.ads-software.com/plugin/wordfence.5.0.9.zip…

Unpacking the update…

Could not copy file. wordfence/tmp/.htaccess

Return to Plugins page
——————————————

My wordpress is loaded in a directory other than root so the .htaccess is probably not found in the location your update expected.

What is the .htaccess UPDaTE so it can be manually edited?

This is the existing .htaccess as modified by my HOSTER.

I did NOT make the suggested change as I am not a PHP programmer and do not know how to integrate it into this existing code.

My problens persist after upgrade to v5.0.8 but without the .htaccess mods.

v 5.0.8 installed, still hangs.

Hangs in the same scan function only it now gets through 2000 files before hanging vice 800 reported before.

Litespeed server.