Plugin Author
AITpro
(@aitpro)
Post the entire Security Log entry. The most important things that I need to see are the Request URI and Query string logged fields.
OK, here is the entry:
[403 GET / HEAD Request: 17. Oktober 2015 – 11:55]
Event Code: BFHS – Blocked/Forbidden Hacker or Spammer
Solution: N/A – Hacker/Spammer Blocked/Forbidden
REMOTE_ADDR: 91.100.123.3
Host Name: 0.190.104.92.dynamic.wline.res.cust.swisscom.ch
SERVER_PROTOCOL: HTTP/1.1
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER:
REQUEST_URI: /img/fly.jpg
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.101 Safari/537.36
Plugin Author
AITpro
(@aitpro)
What and where is /img/fly.jpg? The typical WordPress folder for images is /wp-content/uploads/. Are you using any HotLink protection code? If so, are you allowing/whitelisting all of your websites? Example: if you are using links to images that are stored on another one of your websites or in a 3rd party application folder then you need to whitelist that website if you using Hotlink protection code.
Yes I’ve placed this folder outside of the regular WP installation path. How and where I can whitelist this path? Thank you
Plugin Author
AITpro
(@aitpro)
You can treat the folder like a 3rd party app folder then and create a 3rd party app RewriteRule.
http://forum.ait-pro.com/forums/topic/custom-applications-outside-of-wordpress-3rd-party-apps/
1. Go to the BPS htaccess File Editor page, click on the Your Current Root htaccess File tab, scroll down in your Root .htaccess file code until you see this .htaccess code below.
# WP REWRITE LOOP START
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
2. Copy your # WP REWRITE LOOP START code to this BPS Root Custom Code text box: CUSTOM CODE WP REWRITE LOOP START
3. After you have copied your WP Rewrite Loop Start .htaccess code then add your Custom RewriteRule code. Your code should look like this example below.
4. Click the Save Root Custom Code button.
5. Go to the BPS Security Modes page, click the Create secure.htaccess File AutoMagic button and activate Root folder BulletProof Mode.
# WP REWRITE LOOP START
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
# RewriteRule for Custom Apps outside of WP
RewriteRule ^img/ - [L]
Plugin Author
AITpro
(@aitpro)
Is the issue/problem still occurring or is it resolved?
Thread Start Date: 10-16-2015 to 10-17-2015
Current Date: 10-19-2015
Plugin Author
AITpro
(@aitpro)
Is the issue/problem still occurring or is it resolved?
Thread Start Date: 10-16-2015 to 10-17-2015
Current Date: 10-20-2015
Plugin Author
AITpro
(@aitpro)
Assuming all questions have been answered – thread has been resolved. If the issue/problem is not resolved or you have additional questions about this specific thread topic then you can post them at any time. We still receive email notifications when threads have been resolved.
Thread Start Date: 10-16-2015 to 10-17-2015
Thread Resolved/Current Date: 10-23-2015
Comments: Last response from user was 6 days ago.
