seedy

I’ll add, gratuitously, that I despise NextGen’s popup. Far more complicated than needed, and nothing that I need in plain sight. And when selecting a Gallery to insert, it displays in chrono order, so the first choice is a gallery I made 7 years ago.

They are bunch of car salesmen over there.

Thank you!

What is odd,since I’m trying independently to resolve it, is that NextGen’s pop-up works. Not being a programmer, so doing everything the hard way, this seems to indicate that they are using their own pop-up not based on tinyMCE.

I am getting a blank white dialogue box when trying to add photos since I tried 1.9.32 and it hasn’t worked since I reverted. Happening with 1.9.30 as well.

Any suggestions?

It’s a common dialogue with plugins. The only issue is that sometimes one cannot revert a plugin because of changes.

Most photo albums don’t support non-images. The built-in Media handler does that well enough.

Two suggestions;

If you are using Live Traffic and the hits are from a hosting company like OVH, GoDaddy, Digital Ocean or a co-lo, block their whole range, everything from those will be a bot/slurper. Use the Block This Network button to see who it is and whether it’s a hosting company or ISP. Look for the largest number of IP’s to block, you may need to scroll down to find the red link with the highest number. One trick some use, esp. from eastern europe, is hitting from little subnets and you end up swatting 8 IP’s instead of 32,000. Then paste the NetName line in the Reason, along with what they were doing. My typical entry might read “UK prober HTTP-GROUP-IP-32”, this is actually one from this morning that was trying every author name numerically.

Also install Bad Behavior and let it run. Look at its logs from time to time to see if there’s something to add to WordFence’s blocklist.

At a certain point, you’ll end up with most of the slurper sources blocked. If you find out you were wrong about a range, you can always alter it and delete the original. Having a clear Reason will help you years from now when you find that no subsequent attacks have been made by reading the counter for each entry. I have a client with controversial views and their list is very long. Other sites have just a handful of the usual suspects.

You could also paste country IP ranges into Advanced blocking, but I rarely need to if I weed them out a bit.

Thank you for the quick easy patch.

Whenever you get an attempt at a nonexistent page, it’s a prober, obviously you don’t have a link they could have followed,so block that range for a while and see if it’s a one-hit wonder. I have the opposite problem; WF claims my most popular page doesn’t exist, every hit is marked that way.

WF is making a mistake trying to do too many things, the only unique and valuable feature they have is Live Traffic and iterative blocking yet they keep piling on “features”. It’s almost like they want to chase intelligent users off and just wow the tards with glitz. PHB’s will fall for it, but anyone who does the hands-on admin can’t be anything but annoyed.

All Hits doesn’t show the probey hits I need to see to admin the site without lots of scrolling, now need to use Pages Not Found for those. LT never did label things correctly in a reliable way, i.e. often found bots in the Humans list, but at least switching panes was easier. Brilliant idea to add an extra click to every pane change, a perfect example of the hubris WF has about how good their parsing is.

I’m going to move to a blocklist in .htaccess soon, just use WF as an indicator of what might be getting through before cutting ties. It’s a shame, if WF only did that one thing really well, was optimised for it, and had the old pane interface, I might well subscribe just for convenience. For now I went back to the 6.1.x version without the ads.

Resolved by using another stats program. Thank you for making it, works nice on one site, but not another one.

Memo to WordPress honchos, the policy requiring public display of URLs is an invitation to the wrong crowd. Be interesting to know how often this forum is scraped for troubled site URL’s. Or put another way, how long would it take you to write a script that did so?

Tried more of the same, changed theme, cleared cache. I’ll try 3.5.5 next since that worked for another poster.

I read that support will be less frequent for a while on the SSA admin panel of another site, so not expecting answers, just documenting what I’m doing.

Searched, tried No Panic button several times and also deactivating several times. No change.

jquery blocked in Edge?

Thank you for the replies. I did try Ninja for a while and it is good if a bit fussy to use, but Shield is now my firewall because of one unique feature that saves a lot of trouble for me. Not going to state publicly what it is but have a peep into the admin panel. Undetectable by browsing files, keep that in mind as you do.

I “separate flyshit from pepper” with IP blocking because full country blocklists don’t work for my particular intended audiences, legit readers all over amongst the probers and slurpers.

Anyway, I reverted the databases and reinstalled a copy of the previous Wordfence from backup, which still works with 4.5. Wordfence does some things really well and would be well-advised to keep focusing on them rather than attempting to do everything, meanwhile I’ll keep looking for another way while remembering to never update Wordfence again.

And that’s my next quest, how to turn off the Update alerts. I’m going to coast along on what I have for a while. The previous 10 pages or so of trouble posts ought to be enough explanation for that.

Tried to revert, now no Live Traffic. Partially works, can get Consumers and Logins, but not Hits.

Adios formerly excellent and useful tool, fare thee well.

Thank you, I checked files referring to <head>, using stock 2012 theme, also ran theme check plugin, it all looks koshah, I see nothing untoward. Plus several WP themes just updated with 4.4, so calling BS on the original complaint thanks to your help.

That sounds like the site that the feed is coming from is compromised.

The trick is finding out where/how Blogger gets their feed. Is it an artifact from Reader bodged on? All I can tell from my end is that the direct link to the feed shows one old post, as it should.

I am thinking this could also be a problem with that person’s individual computer. I can’t repeat it without opening a Blogger account.

Thanks for the clarity on public links here.