scullydion
Forum Replies Created
-
Forum: Plugins
In reply to: [WP Cerber Security, Anti-spam & Malware Scan] PayPal blockedThanks everyone, it seems that some other setting on my site/server may have changed because I’m still getting the same errors even when the wp cerber plugin is deactivated. If I find out the cause I’ll update.
Forum: Plugins
In reply to: [WP Cerber Security, Anti-spam & Malware Scan] PayPal blockedThanks I’ve also had this issue for a long time and didn’t know how to solve it. In the traffic activity list I see:
173.0.81.1
notify.paypal.com March 28, 2020, 8:01 am
Form submission denied IP address is locked out
URL: https://www.domain.com/The email notification I get for PayPal states:
Please check your server that handles PayPal Instant Payment Notifications (IPN). Instant Payment Notifications sent to the following URL(s) are failing:
https://www.domain.com/?wc-api=WC_Gateway_PaypalShould the Query whitelist exception line then be:
{\/?wc-api=WC_Gateway_Paypal\.php\?user_id=\d+$}Thanks in advance!
Clare
Forum: Plugins
In reply to: [WP Cerber Security, Anti-spam & Malware Scan] How to find worst offendersThank you so much for taking the extra time to show me this! Bad IP addresses beware – I’ll get you now! ??
Forum: Plugins
In reply to: [WP Cerber Security, Anti-spam & Malware Scan] How to find worst offendersI’ll read up on how to do that – thanks for your help.
Forum: Plugins
In reply to: [The Events Calendar] Fix Alignment to title in footer widgetWell I fixed it in the end, I was looking in the wrong place.
.footer .tribe-list-widget { margin: 0; padding: 0; } .footer p, .footer a { color: #ed8137 !important; font-size: 16px !important; }- This reply was modified 8 years, 4 months ago by scullydion.
Forum: Themes and Templates
In reply to: How to move text up with CSS@themesumo – great, your suggestions worked!
@jaycbrf – hear ya loud and clear, next time I certainly will look into hiring someone as it is certainly giving me way to much of a headache ??
Forum: Fixing WordPress
In reply to: Remove coming soonSometimes it takes a while to update. Have a look at https://support.aarcade.net/how-do-i-update-or-change-the-google-search-results-for-my-site/
Forum: Fixing WordPress
In reply to: Tumblr share tool not workingFor anyone having the same problem, I’ve narrowed down the cause to CloudFlare. I’ve submitted a trouble ticket with them and will update if there is a solution.
Or this:
<FilesMatch "^(xmlrpc\.php|wp-trackback\.php)"> Order Deny,Allow allow from 185.64.140.0/22 allow from 2a04:fa80::/29 allow from wordpress.com allow from 2620:115:C000::/44 allow from 76.74.255.0/25 allow from 76.74.248.128/25 allow from 207.198.101.0/25 allow from 198.181.116.0/22 allow from 192.0.64.0/18 allow from 64.34.206.0/24 Deny from All </FilesMatch>Hi
I found some coding on https://forum.ait-pro.com/forums/topic/wordpress-xml-rpc-ddos-protection-protect-xmlrpc-php-block-xmlrpc-php-forbid-xmlrpc-php/
Just wanted to double check that if I were to use the below code in the htaccess file instead:
RewriteCond %{REQUEST_URI} ^.*(xmlrpc\.php|wp-trackback\.php)$ RewriteCond %{HTTP_USER_AGENT} !^(.*Jetpack.*)$ RewriteRule ^(.*)$ - [F]Will this do the job of matching the string?
Thanks
Clare
Forum: Fixing WordPress
In reply to: Warning: ini_get_all() has been disabled for security reasonsJust thought i’d chime in to say the same thing happened to me. All of a sudden I couldn’t run any updates and the fix of changing php.ini and disabled “ini_get_all”.
Have to say I’m not entirely happy to have had to amend the php.ini file, feels like too much tinkering with settings I’m not familiar with.
Thanks Jeremy,
Yes I would like the mobile app to work and I would like to try your suggestion of matching the string. Forgive my lack of knowledge, but can you point me in the right direction of how to do this? Do I still need to block xmlrpc in the pre host file as well?
Thanks again in advance!
Clare
Hmmm I have it working if I change it to:
<FilesMatch "xmlrpc\.php$"> allow from 185.64.140.0/22 allow from 2a04:fa80::/29 allow from wordpress.com allow from 2620:115:C000::/44 allow from 76.74.255.0/25 allow from 76.74.248.128/25 allow from 207.198.101.0/25 allow from 198.181.116.0/22 allow from 192.0.64.0/18 allow from 64.34.206.0/24 </FilesMatch>Does this still protect my site?
Forum: Fixing WordPress
In reply to: Can't remove HTTPS back to HTTPInterestingly, I am able to make everything https with “Better Search Replace”. If after using this plugin I then try and change everything back to http then “home” and the “site” URL’s don’t match again. hmm….
Forum: Fixing WordPress
In reply to: Can't remove HTTPS back to HTTPHi Jan
Thanks for putting this in the right area of the forum, I wasn’t too sure! I’ve tried a couple of the suggestions from the link you shared, including using the plugins Velvet Blues Update URLs, Better Search Replace and Search and Replace for WordPress Databases Script.
Sadly I’m still non the wiser. I’ve taken a look at my CloudFlare settings and can’t see anything there that is any different from another site I’m hosting with the same theme that is working fine – see https://www.polepurpose.com
Maybe I’m just not seeing the fault. I wonder if there is any way to copy the settings from https://www.polepurpose.com to https://www.type1active.com to try and resolve this issue that way? I’ve already compared wp-config and htacess files as well as the CloudFlare settings.
Thanks again
Clare