OptimizePress Theme – 403 error

Home Forums BulletProof Security Pro OptimizePress Theme – 403 error

Tagged: ,

Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • June 9, 2014 at 12:27 pm #15488
    Paulin Halenria
    Participant

    Hello

    I have this error in the logs, but need some help to wwrite a decent Bypass/Skip rule

    [403 GET / HEAD Request: 9 juin 2014 - 7 h 29 min]
Event Code: WPADMIN-SBR
Solution: http://forum.ait-pro.com/forums/topic/security-log-event-codes/
 
REQUEST_METHOD: GET
HTTP_REFERER: http://www.private.com/wp-admin/admin.php?page=optimizepress-page-builder&page_id=765&step=5
REQUEST_URI: /wp-content/themes/optimizePressTheme/lib/modules/blog/video/flowplayer/flowplayer-3.2.7.swf?config={%27playlist%27:[{%27autoPlay%27:true,%27autoBuffering%27:true,%27url%27:%27http:\\/\\/op2-inapp.s3.amazonaws.com\\/elements-button.mp4%27}],%27plugins%27:{%27controls%27:{%27url%27:%27http:\\/\\/www.private.com\\/wp-content\\/themes\\/optimizePressTheme\\/lib\\/modules\\/blog\\/video\\/flowplayer\\/flowplayer.controls-3.2.5.swf%27}}}
QUERY_STRING: 
HTTP_USER_AGENT: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.114 Safari/537.36
    June 9, 2014 at 1:28 pm #15491
    AITpro Admin
    Keymaster

    UPDATE: BPS Pro 13+ and BPS 2.0+ versions have a feature called: Setup Wizard AutoFix (AutoWhitelist|AutoSetup|AutoCleanup) that automatically creates plugin and theme whitelist rules and automatically sets up and cleans up caching plugins htaccess code.

    Very ugly Request URI and Query Strings.  It makes my top ten Ugh-tastic list for ugly code.  You might have to create a root and a wp-admin skip/bypass rule, but try the wp-admin skip/bypass rule by itself first.

    1. Copy the wp-admin plugin skip/bypass rule below to this BPS wp-admin Custom Code text box:  CUSTOM CODE WPADMIN PLUGIN FIXES: Add ONLY WPADMIN personal plugin fixes code here 

    NOTE: If you already have a wp-admin S=2 skip rule in use in Custom Code then make this skip rule S=3 and add it above skip rule S=2

    # OptimizePress Query String wp-admin skip/bypass rule
RewriteCond %{QUERY_STRING} page=optimizepress-page-builder(.*) [NC]
RewriteRule . - [S=2]

    2.  Click the Save wp-admin Custom Code button.

    3.  Go to the BPS Security Modes page and activate wp-admin Folder BulletProof Mode.

    June 9, 2014 at 3:46 pm #15494
    Paulin Halenria
    Participant

    Thanks for your fast support.

    For your top ten, just know OptimizePress will be your friend in this list 🙁
    And not only for this one: http://prntscr.com/3ra9zt
    This huge value is linked to optimizepress theme

    June 9, 2014 at 4:07 pm #15496
    AITpro Admin
    Keymaster

    Wow that is a lot of files to be checking in the wp-content folder, but overall checking 5,000 files costs about .1 seconds website page load speed so not a huge deal.  That number increases exponentially after 5,000 files though.  For example checking 10,000 files will cause a .5 second website page load speed increase.

  • Author
    Posts
Viewing 4 posts - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.