Update to my recently publish question:
See below the result of “wp-check.php” (domain anonymized), which I discovered a few moment after my original post. Sorry, I was a bit too slow on this one….
Thanks again.
NinjaFirewall (WP edition) troubleshooter
HTTP server : Apache
PHP version : 7.3.17
PHP SAPI : FPM-FCGI
auto_prepend_file : /var/www/vhosts/my-domain.de/httpdocs/wp-content/nfwlog/ninjafirewall.php
Loader’s path to firewall : /var/www/vhosts/my-domain.de/httpdocs/wp-content/plugins/ninjafirewall/lib/firewall.php
wp-config.php : found in /var/www/vhosts/my-domain.de/httpdocs/wp-config.php
NinjaFirewall detection : NinjaFirewall WP Edition is loaded (Full WAF mode)
Loaded INI file : /opt/plesk/php/7.3/etc/php.ini
user_ini.filename : .user.ini
user_ini.cache_ttl : 300 seconds
User PHP INI : none found
DOCUMENT_ROOT : /var/www/vhosts/my-domain.de/httpdocs
ABSPATH : /var/www/vhosts/my-domain.de/httpdocs/
WordPress version : 5.4.1
WP_CONTENT_DIR : /var/www/vhosts/my-domain.de/httpdocs/wp-content
Plugins directory : /var/www/vhosts/my-domain.de/httpdocs/wp-content/plugins
User Role : Administrator
User Capabilities : manage_options: OK – unfiltered_html: OK
Log dir permissions : /var/www/vhosts/my-domain.de/httpdocs/wp-content/nfwlog dir is writable
Cache dir permissions : /var/www/vhosts/my-domain.de/httpdocs/wp-content/nfwlog/cache dir is writable
NinjaFirewall (WP edition) troubleshooter v1.9.1
I cannot reproduce the issue.
1. Can you check the firewall log (“NinjaFirewall > Logs”)? If you were blocked by the firewall you should see the reason there.
2. If there’s nothing in the log: Did you enable some options from the “Firewall Policies > Advances Policies > HTTP response headers” section?
3. Can you confirm you are whitelisted? You can see that from the “NinjaFirewall > Dashboard” page.
Thanks for your reply. Here are my answers to your questions:
1. The NinjaFirewall log says:
14/May/20 12:54:00 #6657311 HIGH – 46.229.168.xxx GET /index.php – User enumeration scan (author archives) – [author_name=sridevi-poquet] – my-domain.de
14/May/20 15:03:00 #4133863 INFO – 93.238.7xxx POST /wp-login.php – Logged in user – [Julie (administrator)] – my-domain.de
No entry at or around the problematic time slot.
2. In the “Firewall Policies > Advances Policies > HTTP response headers” section, everything is on “No”
3. The admin user is white-listed.
Admin user Julie: You are whitelisted by the firewall.
Tell me if more info is needed.
Thanks a lot.
Best, Larry
The timezone in your server’s logs and NinjaFirewall’s log could be different (NF uses your blog timezone). Can you search for “async-upload.php” in the firewall log instead?
You can also open your browser’s console when you try to upload a file (press F12 key) and check for potential error in the console.
-
This reply was modified 6 years ago by
nintechnet.
-
This reply was modified 6 years ago by nintechnet.
Hi there ,
thanks for your reply.
It seems we have some other issues NOT related to NinjaFirewall, which is very nice.
So I will close this support ticket for now and thank you for your assistance so far.
I will re-open if necessary.
Thanks again for your support.
Best, Larry
