Themify Image Function – Themify img.php

Home Forums BulletProof Security Free Themify Image Function – Themify img.php

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • #1507
    AITpro Admin
    Keymaster

    Email Question:

    Hello,

    I have problem with one plugin. When I create secure htaccess file my plugin stops working. I do now know how to write custom rules in htacces so it would be great if you could help me.
    This plugin is using one php file: wp-content/themes/itheme2/themify/img.php

    How can I allow access to this file or this folder?

    Thanks in advanced,

    Milan

    #1508
    AITpro Admin
    Keymaster

    I do not see anything in the Themify function / code – http://themify.me/docs/themify-image-function – that would be blocked by BulletProof Security, so first eliminate that BPS is actually causing the issue/problem by doing these troubleshooting steps.

    1. On the Security Modes page, click the Root Folder BulletProof Mode Deactivate button. See Custom Code Note if doing this step works.
    2. On the Security Modes page, click the wp-admin Folder BulletProof Mode Deactivate button. See Custom Code Note if doing this step works.
    3. If an issue/problem is related to Login Security turn Off Login Security on the Login Security & Monitoring page.
    4. If an issue/problem is related to ISL or ACE see this forum topic: http://forum.ait-pro.com/forums/topic/idle-session-logout-isl-and-authentication-cookie-expiration-ace/
    5. Test your plugin or theme.

    If you find that BPS is causing the issue/problem then try whitelisting the img.php file name in this misc skip / bypass rule in your root .htaccess file as shown below.

    # TIMTHUMB FORBID RFI and MISC FILE SKIP/BYPASS RULE
    # Only Allow Internal File Requests From Your Website# To Allow Additional Websites Access to a File Use [OR] as shown below.# RewriteCond %{HTTP_REFERER} ^.*YourWebsite.com.* [OR]
    # RewriteCond %{HTTP_REFERER} ^.*AnotherWebsite.com.*
    RewriteCond %{QUERY_STRING} ^.*(http|https|ftp)(%3A|:)(%2F|/)(%2F|/)(w){0,3}.?(blogger|picasa|blogspot|tsunami|petapolitik|photobucket|imgur|imageshack|wordpress\.com|img\.youtube|tinypic\.com|upload\.wikimedia|kkc|start-thegame).*$ [NC,OR]
    RewriteCond %{THE_REQUEST} ^.*(http|https|ftp)(%3A|:)(%2F|/)(%2F|/)(w){0,3}.?(blogger|picasa|blogspot|tsunami|petapolitik|photobucket|imgur|imageshack|wordpress\.com|img\.youtube|tinypic\.com|upload\.wikimedia|kkc|start-thegame).*$ [NC]
    RewriteRule .* index.php [F,L]
    RewriteCond %{REQUEST_URI} (themify/img\.php|timthumb\.php|phpthumb\.php|thumb\.php|thumbs\.php) [NC]
    RewriteCond %{HTTP_REFERER} ^.*ait-pro.com.*
    RewriteRule . - [S=1]
Viewing 2 posts - 1 through 2 (of 2 total)
  • You must be logged in to reply to this topic.