wordcrunch

Just a note in case others run into issues with placing this filter in the wp-config.php file – you have to put it at the end (after the line below) for it to work (filters need WordPress loaded first).

require_once( ABSPATH . 'wp-settings.php' );

Thanks again @carike

I sent this email as soon as I saw your reply… Not sure why you didn’t get it, I didn’t get a bounce notice.

In any case (and for others who encounter this issue) I’ve added a script to replace $_SERVER[“REMOTE_ADDR”] with Cloudflare’s $_SERVER[“HTTP_CF_CONNECTING_IP”] and auto-prepended via .htaccess.

There are other bugs in Wordfence that this issue has revealed:

1. Wordfence should be using the stored home or site_url string rather than the email domain to generate the reset link. This seems like a pretty obvious bug that shouldn’t require any further diagnostic information.

2. Regarding https in the link, maybe checking the request uri protocol and matching that if it is https is the better way. Many sites force upgrade via HSTS or other dns-based techniques and the stored site_url & home options won’t be authoritative in these cases.

Lol OMG of course! Thank you thank you thank you thank you thank you!

Thanks again for the support! I did try disabling the SSL verification but it’s still not getting past the page with the notice “The changes have not yet taken effect. If you are using LiteSpeed or IIS as your web server or CGI/FastCGI interface, you may need to wait a few minutes for the changes to take effect since the configuration files are sometimes cached. You also may need to select a different server configuration in order to complete this step, but wait for a few minutes before trying. You can try refreshing this page.”

Apache 2.4.6-90

Never mind. As of WordPress 5.0, tree view for post categories is built in to the WordPress core – therefore this plugin is no longer needed.