MailChimp – plugin firewall whitelist rule

Home Forums BulletProof Security Pro MailChimp – plugin firewall whitelist rule

Tagged: 

This topic contains 3 replies, has 3 voices, and was last updated by  AITpro Admin 4 years ago.

Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • #10911

    jena
    Participant

    I have this kind of error in security log

    >>>>>>>>>>> 403 GET or HEAD Request Error Logged - November 4, 2013 - 10:00 am <<<<<<<<<<<
    REMOTE_ADDR: 75.22.98.36
    Host Name: 75-22-98-36.lightspeed.clmboh.sbcglobal.net
    SERVER_PROTOCOL: HTTP/1.1
    HTTP_CLIENT_IP:
    HTTP_FORWARDED:
    HTTP_X_FORWARDED_FOR:
    HTTP_X_CLUSTER_CLIENT_IP:
    REQUEST_METHOD: GET
    HTTP_REFERER: http: //pelc.cc/pelc-alive/
    REQUEST_URI: /wp-content/plugins/mailchimp-for-wp/assets/css/css.php?checkbox=1&form=1&ver=1.4
    QUERY_STRING:
    HTTP_USER_AGENT: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9) AppleWebKit/537.71 (KHTML, like Gecko) Version/7.0 Safari/537.71

    I tried both ways:
    1. Added this skip/bypass rule But it still shows the error in security log.

    # mailchimp Plugin skip/bypass rule
    RewriteCond %{REQUEST_URI} ^/wp-content/plugins/mailchimp-for-wp/ [NC]
    RewriteRule . - [S=24]

    Also added # CUSTOM CODE TIMTHUMB FORBID RFI and MISC FILE SKIP/BYPASS RULE

    RewriteCond %{REQUEST_URI} (css\.php|ajaxlinks\.php|updateprayer\.php|timthumb
    #10915

    AITpro Admin
    Keymaster

    UPDATE: BPS Pro 13+ and BPS 2.0+ versions have a feature called: Setup Wizard AutoFix (AutoWhitelist|AutoSetup|AutoCleanup) that automatically creates plugin and theme whitelist rules and automatically sets up and cleans up caching plugins htaccess code.

    Most likely this plugin script needs to be whitelisted in the Plugin Firewall.

    Troubleshooting Help links
    For BPS Pro troubleshooting the first thing you should do is use the BPS Pro troubleshooting steps in the link below to determine what in BPS Pro is blocking something else so that you will know what needs to be done to correct the issue.  If the Plugin Firewall is blocking something then you would create a Plugin Firewall whitelist rule, if the root .htaccess file is blocking something then you would create a plugin skip/bypass rule.

    http://forum.ait-pro.com/forums/topic/read-me-first-pro/#bps-pro-general-troubleshooting

    Security Log / Plugin Firewall troubleshooting and testing
    http://forum.ait-pro.com/video-tutorials/#security-log-firewall

    Plugin Firewall Read Me Topic
    http://forum.ait-pro.com/forums/topic/plugin-firewall-read-me-first-troubleshooting/

    Add this MailChimp plugin script to your Plugin Firewall Whitelist Text area, click the Save Whitelist Options button and activate the Plugin Firewall again.

    /mailchimp-for-wp/assets/css/css.php

     

    #15283

    simon
    Participant

    [Topic has been merged into this relevant Topic]

    I have this Security Log… can i just add it to the firewall white list area?

    >>>>>>>>>>> 403 GET or HEAD Request Error Logged - May 27, 2014 9:37 am <<<<<<<<<<<
    REMOTE_ADDR: 92.204.62.191
    Host Name: port-92-204-62-191.dynamic.qsc.de
    SERVER_PROTOCOL: HTTP/1.1
    HTTP_CLIENT_IP:
    HTTP_FORWARDED:
    HTTP_X_FORWARDED_FOR:
    HTTP_X_CLUSTER_CLIENT_IP:
    REQUEST_METHOD: GET
    HTTP_REFERER: http://neu.giveyourselflove.com/wp-login.php
    REQUEST_URI: /wp-content/plugins/mailchimp-for-wp/assets/css/css.php?checkbox=1&form=1&ver=1.5.8
    QUERY_STRING:
    HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.2; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0

    Is that what i have to add there:?

    /mailchimp-for-wp/assets/css/css.php?checkbox=1&form=1&

    Thanks in advance
    Simon

    #15289

    AITpro Admin
    Keymaster

    Please see above in this Forum Topic for the answer.

Viewing 4 posts - 1 through 4 (of 4 total)

You must be logged in to reply to this topic.