John_McClure
Forum Replies Created
-
Forum: Plugins
In reply to: [All-In-One Security (AIOS) – Security and Firewall] Image Dropout ProblemMarked as resolved but its a bug. If I find the solution I’ll post it.
Forum: Plugins
In reply to: [All-In-One Security (AIOS) – Security and Firewall] Image Dropout ProblemNote: Cloudflare is currently in development mode so site changes immediately take effect. This is likely why there was a several hour lag in broken linking when Cloudflare is activated to use CDN caches.
Forum: Plugins
In reply to: [All-In-One Security (AIOS) – Security and Firewall] Image Dropout ProblemHi wpsolutions,
I systematically turned On features one by one and checked the site to confirm the specific feature that’s breaking links. Prevent Hotlinking is the problem. This may be occurring because I’m using Cloudflare on my site and in the WordPress app.You can confirm the site problem by checking http://www.testbench.us
Forum: Plugins
In reply to: [All-In-One Security (AIOS) – Security and Firewall] Image Dropout ProblemAfter reading your current support post, I just deactivated most of the Advanced features as well as several other features.
I can turn them all back On to demonstrate the issue.
Note: its a brand new subdirectory install with only 2 users and an extensive deny list in the site root along with the free Cloudflare CDN site service. I initially thought it was a Cloudflare cache issue but it doesn’t appear to be the case.
I’ll turn the All in One features back on in the morning and post a comment when the issue returns. Over night should also confirm it isn’t caused by a different service.
Thanks for the response!
Forum: Hacks
In reply to: How to sanitize wordpress subdirectory from displayed paths?Thanks for the response James.
Forum: Requests and Feedback
In reply to: when will the wordpress team address login security?I feel your Pain
I recently had to erase a wp blog due to blog spam. Though the blog is now erased, the bots continue to attempt access thus exposing themselves.
I’ve spent several days using CloudFlare, on a now erased website, to track and deny access to bots which continue to seek former topic posts and IPs which seek to expose /usr/local/apache/htdocs/wpad.dat access.
It occurs to me, this is a hosting flaw. If hosts deny all at the router, which connects to the backbone, and then sell custom server access to clients based on their website needs, the access and blog spam can be eliminated.
Example: why does my site need access to the globe when I only want to communicate with certain users…
WordPress isn’t the problem, the host configuration Is.