pacfire
Forum Replies Created
-
Thank you for your patience @omarelhawary – I was just on a few days leave, this was my first opportunity to read your reply.
Thank you so much – with your assistance I was able to identify the correct footer class – and the links are gone.
Thank you so much for going above and beyond for us in this ticket – this will form part of an important new feature for our purchasing portal. This is resolved.
Thank you once again for all the assistance and patience with us (me). I know this is such a small issue, I really appreciate your time.
I have completed the following actions:
• installed the edited code
• cleared all my browsers caches
• tested
Unfortunately the results returned the same.
I then:
• ran console and the jQuery
• Console returned a ‘0’Thank you, once again. This seems small, but it will be a fantastic feature for our purchasing portal.
Thank you for your reply. I can get around WordPress – but I’m by no means an expert, so your assistance is very much appreciated.
I’m not sure it changes anything – but I’m working with a multi-site instal. The script is currently installed on our core site and on my testing environment.
I’ve followed the directions and console returns no errors. I’m happy to share the screenshot with you if you like.
Thank you once again for your patience and assistance.
Amanda @ Pac Fire
Thank you so much for taking the time to look at my issue and reply to me.
I have put the script above into WP code (code snippet – Java Script, site wide footer) exactly as it is transcribed above. Then activated it.
I have done something wrong along the way – it has had no effect. I’m in our testing platform and I can see the users names – they are highlighted as links, and clickable. I can share the link – but it’s a registered user only site so I’d need to make you a login.
I’m so sorry about the trouble – this really will make a great feature for our site. Thank you for your responsiveness and help.
Amanda @ Pac Fire
I’m going to take a .pdf capture of this thread, thank you for the advice.
When able to access the site from my onboard work station I did check the lockout logs and found my home IP in there – but at a much later point of the day – it was locked out in the evening when I had been working to try and get in for most of the day. The reason was 404 – but I never generated a 404 error just the redirect to 127.0.0.1.
As I said, the whitelist fix was already implemented – but the error cleared on my home IP as soon as I physically switched off the whitelist and hit save. It still feels like it had something to do with the whitelist – even though the fix was in there and the system was telling me it was there…
Still all good here, however, thank you for the help – and in other good news we’re reaching the conclusion of the resource problem that started this whole mess in the first place so onward and upward.
Thank you @hjogiupdraftplus and team for your assistance in this.
Hi again @hjogiupdraftplus
It looks like this has been resolved – but it may have highlighted another problem.
My home login was redirecting to 127.0.0.1 – from there I looked through the forums and found the wp-config whitelist fix, which I implemented via ftp:
/** Disable Login Whitelist AIOWS */
define(‘AIOS_DISABLE_LOGIN_WHITELIST’, true);I dumped all my browser caches then walked away for a break.
I came back and I was still getting redirected to 127.0.0.1 from the backend or front end login link.
I deactivated the plugin (renamed it) to be able to login and fix what I needed to fix. I established that it was the base plugin – NOT the pro addition,
I came in to the office (different IP) and my login was active – I went through and deactivated anything that looked like it had a 127.0.0.1 redirect – including the login whitelist (even though the WP-config fix was deployed). The system told me that was deactivated because of the fix. I hope someone on my home IP try to contact the site again after just this action – and it loaded perfectly without any local cache modification.
It was the Login Whitelist – but the wp-config fix was in there and active (the plugin told me).
White list remains switched off – but felt like this may be relevant for the developers.
Thanks!
I really appreciate the fast reply.
I have returned to my workplace this morning – and my login here (thankfully) is still functioning.
I’m putting the settings back in now. A few things about this case – I do not (and never have) Cookie Based Brute Force Protection turned on,
My login at home is ONLY blocked from the login screens (both front in and back end), the front end is still functional….
I do work from home at certain points – so I do need this resolved.
Forum: Plugins
In reply to: [Perfect Brands for WooCommerce] Brand Pages returning 404 ErrorI have performed all the updates available and yes, unfortunately the brand link is still duplicated – and in other bad news, our sister site which was not initially effected now has the duplicate link showing with all brand links returning a 404 error.
I have read about WooCommerce introducing a ‘Brands’ section – and the timing of this does coincide with the issue.
Let me know if I can provide more information.
Forum: Plugins
In reply to: [Perfect Brands for WooCommerce] Brand Pages returning 404 ErrorHi @jmatiasmastro – thanks for your reply.
WPB is all I have used for brands for the last 15 years 🙂 there is no other plugin handling brands installed (well, none that I’m aware of).
I tested yesterday, turned off anything that would change the look of the front end – it wasn’t any of those unfortunately. The only changes we’ve made recently is we’ve added the premium version of All-in-one-Word-Press security and I run Ultimate Shortcodes – Extra Shortcodes on the problematic site.
Right now our front end is working so we’re ok – but it seemed like the /brand/ pages redirecting to 404 was connected to the double up in ‘Brands’ link in menu.
Forum: Plugins
In reply to: [Perfect Brands for WooCommerce] Brand Pages returning 404 ErrorFurther to this all:
I run a sister site with a ‘similar’ set up. WPB is working as expected on this site without any modification – so it looks like it may be a plugin conflict in our instance. If I can determine the cause I will reply and let you know.
Overnight I have been able to secure the trace code you requested – how would you like me to get it to you?
Thanks!
Thank you for your reply – I have been clearing Audit Logs as I block IP’s so I can stay on top of this issue. I will let the audit log build up for a few days then copy the trace data for you.
We run W3 Cache and do have a ‘page cache’ implemented which I clear regularly when updating the Blacklist.
We use the WP Security > Firewall > Block Allow List – we have over 10,000 values in the block list. Some of the fake users are using already blocked IP’s and come up in the Audit list with the only option ‘Unblacklist’.
Let me generate fresh data for you and come back to this post.
Today, we have had 110 fake orders alone… If you can assure that that the region blocking in the premium version will help – we will move forward with it, we just don’t have a lot of confidence considering the issues we’re having with the Block / Allow list.
Thanks.
Thanks for your reply. Yes that would probably reduce the fake orders – but is a premium feature… we have considered going premium in the past – but with IP address already blacklisted being able to contact the website and place more fake orders we have no guarantee that upgrading and using this feature will actually act to stop the orders… if the blacklist was working – we’d be more confident….
My issue is, we’ve put a lot of time into generating our Blacklist… it’s very disheartening to see IP’s pop up on our audit list that have already been blocked – some for a long period of time.
Whatever is doing this is registering for an account and then placing an order in the one move – the order is getting past our payment gateway.
The address, email and user name are all filled out – and the address (most of the time) even has the correct Suburb to the postcode.
Example of the email addresses:
[email protected]
[email protected]
[email protected]I have pasted as directed – thank you for your attention.
Hi there @hjogiupdraftplus – I apologise for the late reply – I was actually on annual leave without a stable internet connection when the issues started.
We are receiving about 100 spam orders a day – which is causing a lot of additional processing work and making a mess of our stock counts.
I have an extensive blacklist – with over 7,000 ranges and individual IP’s listed (generated from our audit logs). Orders are coming through from IP’s and ranges that we have already blacklisted – when they appear on the audit list – they appear as ‘blacklisted’.
We do not allow guests to order – so I cannot apply CAPTCHA on the checkout – but it is applied in every single other instance I can.
I really need some assistance in getting the blocked IP’s to actually be ‘blocked’ please – all advice appreciated – the sooner I can get this under control – the sooner I can stop pulling my hair out.
Thank you!