403 Forbidden Error Page

Resolved Alnajafi
(@alnajafi)

9 years, 9 months ago

Hello, I’m using the latest versions of both wordpress and BPS.
my problem is I’m receiving an error message:

403 Forbidden Error Page:If you arrived here due to a search or clicking on a link click your Browser’s back button to return to the previous page. Thank you.

If I’m trying to
1. login using Facebook account
2. and referring to a page other than the homepage, like “/wp-admin” or any other page.

Like I have a page that requires logging in to view, and I use facebook login, the login occurs but the Error message 403 appears.

other than that all is working perfectly.

https://wordpress.org/plugins/bulletproof-security/

Viewing 6 replies - 1 through 6 (of 6 total)

Plugin Author AITpro
(@aitpro)

9 years, 9 months ago

What is the name of the facebook login/connect plugin?
Check your BPS Security Log and look for the log entry that is related to the facebook login/connect plugin and post the log entry so that I can see what is being blocked.
Thread Starter Alnajafi
(@alnajafi)

9 years, 9 months ago
Hello, I’m using “Nextend Facebook Connect”
but, I solved my issue by commenting out these two lines:
```
RewriteCond %{QUERY_STRING} [a-zA-Z0-9_]=http:// [NC,OR]
RewriteCond %{QUERY_STRING} http\: [NC,OR]
```
Is that safe?
Plugin Author AITpro
(@aitpro)

9 years, 9 months ago

Yes, it is safe to comment out those 2 filters. They are older filters that the timthumb RFI filter now handles to prevent/block Remote File Inclusion hacking attempts.

1. To save your code modifications permanently copy the entire modified BPS Query String Exploits code to the BPS Root Custom Code text box: CUSTOM CODE BPSQSE BPS QUERY STRING EXPLOITS
2. Click the Save Root Custom Code button.
3. Go to the Security Modes page, click the Create secure.htaccess File AutoMagic button and activate Root folder BulletProof Mode again.
Plugin Author AITpro
(@aitpro)

9 years, 9 months ago
Or I just tested this skip/bypass rule and it works…
```
# Nextend facebook connect skip/bypass
RewriteCond %{QUERY_STRING} loginFacebook=(.*) [NC]
RewriteRule . - [S=13]
```
It would go in the CUSTOM CODE PLUGIN/THEME SKIP/BYPASS RULES text box.
Plugin Author AITpro
(@aitpro)

9 years, 9 months ago

Assuming all questions were answered. If you have additional questions regarding this specific issue please post them.

Thread Starter Alnajafi
(@alnajafi)

9 years, 9 months ago

no actually.
Thank you very much!

Viewing 6 replies - 1 through 6 (of 6 total)

The topic ‘403 Forbidden Error Page’ is closed to new replies.