Thread Starter
Serva
(@serva)
Hi
These two just never complete:
[Feb 28 23:06:54] Scanning file contents for infections and vulnerabilities
[Feb 28 23:06:54] Scanning files for URLs in Google’s Safe Browsing List
They are still running now and have never completed.
Problem is I need to get this code out as my client is not a happy person, and I don’t want to have to re do the site.
OK, if you’re in a rush you might want to hold off on Wordfence until we get this resolved. Check your hosts memory configuration using the system info link at the bottom of options and let me know what memory_limit is set to.
Regards,
Mark.
Thread Starter
Serva
(@serva)
Wordfence Memory benchmarking utility version 4.0.3.
This utility tests if your WordPress host respects the maximum memory configured
in their php.ini file, or if they are using other methods to limit your access to memory.
–Starting test–
Current maximum memory configured in php.ini: 128M
Current memory usage: 4.25M
Setting max memory to 90M.
Starting memory benchmark. Seeing an error after this line is not unusual. Read the error carefully
to determine how much memory your host allows. We have requested 90 megabytes.
Completing test after benchmarking up to 80.25 megabytes.
–Test complete.–
Congratulations, your web host allows you to use at least 80.25 megabytes of memory for each PHP process hosting your WordPress site.
Error received: ob_end_flush() [ref.outcontrol]: failed to delete and flush buffer. No buffer to delete or flush.
Hi Serva,
Based on that fact that you’re currently seeing spam on your site, it seems to be already infected this is probably interfering with Wordfence functioning and is the cause of you not being able to complete scans. Please work with your hosting provider to repair your site and restore from backups if you need to.
Regards,
Mark.
Thread Starter
Serva
(@serva)
So, if I read this correctly your application says that:
1. Your program will help stop attacks.
2. If the site gets attacked your program would be able to show me how to remove it.
However it didn’t detect the attack and now that it’s been attacked the program can’t get it out!
This raises the question of why do I have your application on my websites?
Now I’m not being rude but what part of the above is incorrect?
What have or haven’t I done to allow the program you offer to protect websites do it’s job?
I ask this because I have your application on all my websites and if at the end of the day it either doesn’t work or I’m doing something wrong I need to know rather than thinking these sites are safe.
Thanks D
No security product or plugin will protect you 100%, including ours. Ask any provider and they’ll tell you the same and if they claim you’re 100% safe, run away as fast as you can.
So this time we could not protect you. Keep in mind that we are only a plugin for WordPress. We don’t protect FTP, CPanel, SSH, Linux, phpmyadmin and many other applications, utilities and platforms that your hosting provider provides you with and an attacker can use to get in.
I understand that you’re frustrated. I’d love to be able to help you more as I’m sure is clear from my 7 replies to your post so far, even though you’re a free customer. So again, your best course of action is to work with your hosting provider to try and restore from backups or your developer or site admin.
Leaving this open for a while in case you have any more comments, but please remember, I’m volunteering my time here and have quite a few posts to get through, so help me by only posting specific questions related to your site which I’ll be happy to help with.
Regards,
Mark.
