Pascal
Forum Replies Created
-
Forum: Plugins
In reply to: [iQ Block Country] 1.2.17 version listed by Plesk WP Toolkit as vulnerableWell as I do not maintain the vulnerability list I am unsure if they will remove the plugin obviously.
As I do not plan on not supporting the other methods of getting an ip address my options are limited to making the REMOTE_ADDR the default method and that if other peoples have other needs they can override that. And hope they will be satisfied by that.
But as said until there is an update you can set the override to REMOTE_ADDR and that will be as secure as it will ever be.
There is no issue in truncating that table no and if you unticked it it should not fill up that table anymore 🙂
You can truncate the table from phpMyAdmin yes that deletes all rows. Drop just drops the entire database and will lead to issues.
You really should disable debug logging as there is no use for it unless you’re debugging an error.
1) Caching and Geo Blocking do not match very well. So in general sense the answer is no.
The ‘workaround’ is using a caching solution that can block at the caching level. As the iQ Block Country is only started when WordPress is actually loaded which isn’t the case with most caching plugins. So the workaround would be using for instance Cloudflare or Varnish.
2) You can unblock Google and other services at the ‘services’ tab it won’t block the spiders no matter which countries you block.
3) It does it best but it cannot block when people properly try to hide their IP address by using VPN’s or Proxies. Even multi million dollar companies like Netflix struggle with that.
Forum: Reviews
In reply to: [iQ Block Country] Scam!!!Maybe get a little bit more educated next review. You download the database at the website of MaxMind which is not mine. I don’t have a database full of IP addresses which lead to countries. MaxMind does. So they decide how they supply this to you and yes they do this for free as well as it is a regular business who needs to make money to keep their lights running and their employees paid.
Fine that you don’t like the plugin or the way MaxMind gives you their data for free. Go on and move to another solution. But not really necessary to leave these kind of reviews as it is unfair to the many hours and years I’ve put in to building this plugin (again for free) which others do like.
Maybe try to write your own plugin once and supply it to the WordPress community?
Forum: Plugins
In reply to: [iQ Block Country] 1.2.17 version listed by Plesk WP Toolkit as vulnerableThe only real solution for the ‘vulnerability’ is to disregard all headers set by for instance Cloudflare, reverse proxies and other (proxy) solutions for the checks we do. But as people actually do use such solutions that would render the plugin useless for them.
If your content should never-ever (for as far as that is ever possible) be accessed by those countries you block you should set the override option. But no solution is fool proof as even multi million dollar companies who build their own solutions to GEO protect their content cannot make it 100% secure.
Forum: Plugins
In reply to: [iQ Block Country] 1.2.17 version listed by Plesk WP Toolkit as vulnerableForum: Plugins
In reply to: [iQ Block Country] Block one page not workingThen I think you have these options a bit switched:
Block pages selected below:
Block all pages except those selected belowThe 1st option blocks only the page you select. The 2nd one blocks all other pages except the one you selected.
Forum: Plugins
In reply to: [iQ Block Country] How to block the login page?The login page is considered as backend. So if you block people from the backend it should be fine unless you use an unsupported login page url changer.
Forum: Plugins
In reply to: [iQ Block Country] WordPress iQ Block Country VulnerabilityForum: Plugins
In reply to: [NSFW] [iQ Block Country] /wp-admin/admin-ajax.php ?In most cases that is caused by using a plugin that interacts with that admin-ajax.php file.
But we’ve also seen random access to that file without any need, for what we don’t know so you’ve got the option to block it or not.
Forum: Plugins
In reply to: [iQ Block Country] Protection Bypass due to IP SpoofingForum: Plugins
In reply to: [NSFW] [iQ Block Country] /wp-admin/admin-ajax.php ?Hi,
On the home tab select the option where it says “Don’t block admin-ajax.php” if you want to unblock it.
Forum: Plugins
In reply to: [iQ Block Country] 1.2.17 version listed by Plesk WP Toolkit as vulnerableForum: Reviews
In reply to: [iQ Block Country] Conflict between Plug-In & SEODid you enable the appropriate services on the services tab?
Did you check with the developers for SEOPress if they have some callback system that needs to be unblocked before the plugin can fully function (for instance put an ip address or ip range on the whitelist)
- This reply was modified 3 years, 9 months ago by Pascal.