MailChimp – plugin firewall whitelist rule

Home Forums BulletProof Security Pro MailChimp – plugin firewall whitelist rule

Tagged: 

Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • November 4, 2013 at 7:24 am #10911
    jena
    Participant

    I have this kind of error in security log

    >>>>>>>>>>> 403 GET or HEAD Request Error Logged - November 4, 2013 - 10:00 am <<<<<<<<<<<
REMOTE_ADDR: 75.22.98.36
Host Name: 75-22-98-36.lightspeed.clmboh.sbcglobal.net
SERVER_PROTOCOL: HTTP/1.1
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //pelc.cc/pelc-alive/
REQUEST_URI: /wp-content/plugins/mailchimp-for-wp/assets/css/css.php?checkbox=1&form=1&ver=1.4
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9) AppleWebKit/537.71 (KHTML, like Gecko) Version/7.0 Safari/537.71

    I tried both ways:
    1. Added this skip/bypass rule But it still shows the error in security log.

    # mailchimp Plugin skip/bypass rule
RewriteCond %{REQUEST_URI} ^/wp-content/plugins/mailchimp-for-wp/ [NC]
RewriteRule . - [S=24]

    Also added # CUSTOM CODE TIMTHUMB FORBID RFI and MISC FILE SKIP/BYPASS RULE

    RewriteCond %{REQUEST_URI} (css\.php|ajaxlinks\.php|updateprayer\.php|timthumb
    November 4, 2013 at 7:39 am #10915
    AITpro Admin
    Keymaster

    UPDATE: BPS Pro 13+ and BPS 2.0+ versions have a feature called: Setup Wizard AutoFix (AutoWhitelist|AutoSetup|AutoCleanup) that automatically creates plugin and theme whitelist rules and automatically sets up and cleans up caching plugins htaccess code.

    Most likely this plugin script needs to be whitelisted in the Plugin Firewall.

    Troubleshooting Help links
    For BPS Pro troubleshooting the first thing you should do is use the BPS Pro troubleshooting steps in the link below to determine what in BPS Pro is blocking something else so that you will know what needs to be done to correct the issue.  If the Plugin Firewall is blocking something then you would create a Plugin Firewall whitelist rule, if the root .htaccess file is blocking something then you would create a plugin skip/bypass rule.

    http://forum.ait-pro.com/forums/topic/read-me-first-pro/#bps-pro-general-troubleshooting

    Security Log / Plugin Firewall troubleshooting and testing
    http://forum.ait-pro.com/video-tutorials/#security-log-firewall

    Plugin Firewall Read Me Topic
    http://forum.ait-pro.com/forums/topic/plugin-firewall-read-me-first-troubleshooting/

    Add this MailChimp plugin script to your Plugin Firewall Whitelist Text area, click the Save Whitelist Options button and activate the Plugin Firewall again.

    /mailchimp-for-wp/assets/css/css.php

     

    May 27, 2014 at 7:31 am #15283
    simon
    Participant

    [Topic has been merged into this relevant Topic]

    I have this Security Log… can i just add it to the firewall white list area?

    >>>>>>>>>>> 403 GET or HEAD Request Error Logged - May 27, 2014 9:37 am <<<<<<<<<<<
REMOTE_ADDR: 92.204.62.191
Host Name: port-92-204-62-191.dynamic.qsc.de
SERVER_PROTOCOL: HTTP/1.1
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http://neu.giveyourselflove.com/wp-login.php
REQUEST_URI: /wp-content/plugins/mailchimp-for-wp/assets/css/css.php?checkbox=1&form=1&ver=1.5.8
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.2; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0

    Is that what i have to add there:?

    /mailchimp-for-wp/assets/css/css.php?checkbox=1&form=1&

    Thanks in advance
    Simon

    May 27, 2014 at 8:42 am #15289
    AITpro Admin
    Keymaster

    Please see above in this Forum Topic for the answer.

  • Author
    Posts
Viewing 4 posts - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.