FeedBurner Log Entry

Home Forums BulletProof Security Pro FeedBurner Log Entry

Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • February 6, 2023 at 5:11 pm #42443
    Terry
    Participant

    I am getting many of these errors that are feeling up the log.

    [405 HEAD Request: February 6, 2023 - 7:01 pm]
BPS Pro: 17
WP: 6.1.1
Event Code: BFHS-HEAD - HEAD Request Blocked
Solution: https://forum.ait-pro.com/forums/topic/security-log-event-codes/
REMOTE_ADDR: 66.249.83.34
Host Name: google-proxy-66-249-83-34.google.com
SERVER_PROTOCOL: HTTP/1.1
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: HEAD
HTTP_REFERER:
REQUEST_URI: /fort-collins-police-services-is-seeking-a-full-time-police-psychologist-or-mental-health-specialist/
QUERY_STRING:
HTTP_USER_AGENT: FeedBurner/1.0 (http://www.FeedBurner.com)

    I also have a report saying that BPS can’t zip, email and delete the logs. Any ideas.

    February 6, 2023 at 5:39 pm #42445
    AITpro Admin
    Keymaster

    Copy the htaccess code below into this BPS Root Custom Code text box: 9. CUSTOM CODE REQUEST METHODS FILTERED
    Click the Save Root Custom Code button.
    Activate Root Folder BulletProof Mode.

    # REQUEST METHODS FILTERED
# If you want to allow HEAD Requests use BPS Custom Code and copy
# this entire REQUEST METHODS FILTERED section of code to this BPS Custom Code
# text box: CUSTOM CODE REQUEST METHODS FILTERED.
# See the CUSTOM CODE REQUEST METHODS FILTERED help text for additional steps.
RewriteCond %{REQUEST_METHOD} ^(TRACE|DELETE|TRACK|DEBUG) [NC]
RewriteRule ^(.*)$ - [F]
#RewriteCond %{REQUEST_METHOD} ^(HEAD) [NC]
#RewriteRule ^(.*)$ /wp-content/plugins/bulletproof-security/405.php [L]

    Not sure what would be preventing BPS from zipping, emailing and deleting log files. Send me a WordPress Administrator login to your site to: info@ait-pro.com

    February 6, 2023 at 5:47 pm #42446
    Terry
    Participant

    I have already deleted the log file and reran the BPS setup to see if it still has the issue. It appears this started at the beginning of the year but I will see what it does now. Also you mentioned adding the code to allow head code. Does that open up the site for attacks as I have never had to add the code on other sites. Just don’t want to weaken security. Did that look like an attack or just a plugin requesting info.

    February 6, 2023 at 5:58 pm #42448
    AITpro Admin
    Keymaster

    HEAD Requests are typically just nuisance Requests, but some are legit like the Feedburner bot request. So nope allowing HEAD Requests does not lessen your website’s security.

  • Author
    Posts
Viewing 4 posts - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.