Sonic Reply Help Desk – 403 error

[Kim]

Customers are not able to register or log into my Help Desk at http://www.Support.BuyHealthPLR.com.

This Help Desk is created with a plugin (Sonic Reply).  I contacted the plugin operators, and they said that another plugin is interfering (I suspect it’s BPS). I’m getting the following errors: I see this error on the registration page
http://www.support.buyhealthplr.com/wp-content/plugins/sonicreply/js/front.js?ver=1.0.0
Failed to load resource: the server responded with a status of 403 (Forbidden)

It means, the file front.js is blocked by some security rule by your host or The file permission is not appropriate on that file. It should be 644 or A security plugin is blocking access to the file http://www.support.buyhealthplr.com/wp-content/plugins/sonicreply/js/front.js

Can you please tell me what to do to fix this?  (plain English please.  🙂

[403 GET Request: June 13, 2016 - 2:57 pm]
Event Code: PFWR-PSBR-HPR
Solution: http://forum.ait-pro.com/forums/topic/security-log-event-codes/
REMOTE_ADDR: 24.78.48.85
Host Name: S010690b134fce806.wp.shawcable.net
SERVER_PROTOCOL: HTTP/1.1
HTTP_CLIENT_IP: 
HTTP_FORWARDED: 
HTTP_X_FORWARDED_FOR: 
HTTP_X_CLUSTER_CLIENT_IP: 
REQUEST_METHOD: GET
HTTP_REFERER: http://www.support.buyhealthplr.com/login-page/
REQUEST_URI: /wp-content/plugins/sonicreply/js/front.js?ver=1.0.0
QUERY_STRING: 
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.84 Safari/537.36

[403 GET Request: June 13, 2016 - 2:57 pm]
Event Code: PFWR-PSBR-HPR
Solution: http://forum.ait-pro.com/forums/topic/security-log-event-codes/
REMOTE_ADDR: 24.78.48.85
Host Name: S010690b134fce806.wp.shawcable.net
SERVER_PROTOCOL: HTTP/1.1
HTTP_CLIENT_IP: 
HTTP_FORWARDED: 
HTTP_X_FORWARDED_FOR: 
HTTP_X_CLUSTER_CLIENT_IP: 
REQUEST_METHOD: GET
HTTP_REFERER: http://www.support.buyhealthplr.com/wp-admin.php
REQUEST_URI: /wp-content/plugins/sonicreply/js/front.js?ver=1.0.0
QUERY_STRING: 
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.84 Safari/537.36

[AITpro Admin]

Do you have the most current version of BPS Pro 11.8 installed?  If not, upgrade to BPS Pro 11.8.  The BPS Pro Plugin Firewall appears to be blocking the Sonic Reply js plugin script.  Not sure why Plugin Firewall AutoPilot Mode is not automatically whitelisting the Sonic Reply js plugin script?  Do you have Plugin Firewall AutoPilot Mode turned On?  If not, go to the BPS Pro Plugin Firewall and turn On AutoPilot Mode and set the Cron frequency setting to 1 minute.  If the Sonice Reply js plugin script whitelist rule does not automatically show up after 3 minutes in the Plugin Firewall Whitelist text area then you can manually add this whitelist rule below for the Sonic Reply plugin by doing the steps below.

/sonicreply/js/front.js

Plugin Firewall Manual Setup Steps
1. Copy and paste plugin scripts/whitelist rules to the Plugins Script|File Whitelist Text Area.
2. Click the Save Whitelist Options button.
3. Click the Plugin Firewall Activate button.

Each plugin script/file path that you add MUST be separated by a comma and a space. Example: /some-example-plugin/api/paypal-ipn-script.js, /another-example-plugin/some-example-script.js. The path name starts with the plugin folder name (do not add /wp-content in the path name).

[Kim]

First of all, how can I get the latest update?  (because I don’t have it) It doesn’t seem like I can do it from within the WP dashboard.

[AITpro Admin]

If you are not seeing a BPS Pro upgrade/update notification on that WordPress Plugins page then see this forum topic for possible causes for that:  http://forum.ait-pro.com/forums/topic/wp-mu-plugin-update/#post-22887 or you can do an alternate BPS Pro upgrade method:  http://forum.ait-pro.com/forums/topic/bulletproof-security-pro-bps-pro-upgrade-installation-methods/

[Kim]

Reinstalled the whole plugin (have the most recent version now) – in the future, where are the instructions to avoid a whole new install?

[AITpro Admin]

You can use the BPS Pro Upload Zip installer to install the BPS Pro upgrade/zip file:  http://forum.ait-pro.com/forums/topic/bulletproof-security-pro-bps-pro-upgrade-installation-methods/

[Kim]

Thanks.  I’ve almost got this done, but I’m getting an error.  I tried to attach a screenshot, but can’t see a way.

This is the error:
Error: Your Whitelist rules either have additional/extra whitespaces between whitelist rules, line breaks/new lines between or after your whitelist rules or no space after the comma between your plugin scripts/paths/rules.

Here is how I have my whitelist file rules listed:

/wp-sonic-defender/ajax.php
/sonicreply/js/front.js

[AITpro Admin]

Ok you just need to use the correct whitelist rule format, which is to have a comma and space between each whitelist rule…

/wp-sonic-defender/ajax.php, /sonicreply/js/front.js

…And then do the rest of the Plugin Firewall setup steps…
Plugin Firewall Manual Setup Steps
1. —
2. Click the Save Whitelist Options button.
3. Click the Plugin Firewall Activate button.

[Kim]

Thank you.  I actually had tried that before, but I still got the error.  I must have still made a mistake, because it just worked now.  Thanks so much.  So someone should be able to register a ticket on my Help Desk now, correct?  I will test it out later.

[AITpro Admin]

Great!  I just checked your website and I am no longer seeing the Sonic Reply 403 error.  So yep everything should be working correctly now.  Hot Tip:  You can check the frontend of a website for 403 errors and other errors by using the Google Chrome Developer tools. 😉

[Author]

Posts