Home › Forums › BulletProof Security Pro › FeedBurner Log Entry
- This topic has 3 replies, 2 voices, and was last updated 9 months, 3 weeks ago by
AITpro Admin.
-
AuthorPosts
-
Terry
ParticipantI am getting many of these errors that are feeling up the log.
[405 HEAD Request: February 6, 2023 - 7:01 pm] BPS Pro: 17 WP: 6.1.1 Event Code: BFHS-HEAD - HEAD Request Blocked Solution: https://forum.ait-pro.com/forums/topic/security-log-event-codes/ REMOTE_ADDR: 66.249.83.34 Host Name: google-proxy-66-249-83-34.google.com SERVER_PROTOCOL: HTTP/1.1 HTTP_CLIENT_IP: HTTP_FORWARDED: HTTP_X_FORWARDED_FOR: HTTP_X_CLUSTER_CLIENT_IP: REQUEST_METHOD: HEAD HTTP_REFERER: REQUEST_URI: /fort-collins-police-services-is-seeking-a-full-time-police-psychologist-or-mental-health-specialist/ QUERY_STRING: HTTP_USER_AGENT: FeedBurner/1.0 (http://www.FeedBurner.com)
I also have a report saying that BPS can’t zip, email and delete the logs. Any ideas.
AITpro Admin
KeymasterCopy the htaccess code below into this BPS Root Custom Code text box: 9. CUSTOM CODE REQUEST METHODS FILTERED
Click the Save Root Custom Code button.
Activate Root Folder BulletProof Mode.# REQUEST METHODS FILTERED # If you want to allow HEAD Requests use BPS Custom Code and copy # this entire REQUEST METHODS FILTERED section of code to this BPS Custom Code # text box: CUSTOM CODE REQUEST METHODS FILTERED. # See the CUSTOM CODE REQUEST METHODS FILTERED help text for additional steps. RewriteCond %{REQUEST_METHOD} ^(TRACE|DELETE|TRACK|DEBUG) [NC] RewriteRule ^(.*)$ - [F] #RewriteCond %{REQUEST_METHOD} ^(HEAD) [NC] #RewriteRule ^(.*)$ /wp-content/plugins/bulletproof-security/405.php [L]
Not sure what would be preventing BPS from zipping, emailing and deleting log files. Send me a WordPress Administrator login to your site to: info@ait-pro.com
Terry
ParticipantI have already deleted the log file and reran the BPS setup to see if it still has the issue. It appears this started at the beginning of the year but I will see what it does now. Also you mentioned adding the code to allow head code. Does that open up the site for attacks as I have never had to add the code on other sites. Just don’t want to weaken security. Did that look like an attack or just a plugin requesting info.
AITpro Admin
KeymasterHEAD Requests are typically just nuisance Requests, but some are legit like the Feedburner bot request. So nope allowing HEAD Requests does not lessen your website’s security.
-
AuthorPosts
- You must be logged in to reply to this topic.