WordPress.org

Ready to get started?Download WordPress

Forums

BulletProof Security
[resolved] FCk Editor error (4 posts)

  1. thezaib
    Member
    Posted 2 years ago #

    hi
    I am getting following error message while trying to browse server through FCK editor. I have implemented BPS security scheme as well. Please help to resolve:

    403 Permission Denied
    You do not have permission for this request /wp-content/plugins/fckeditor-for-wordpress-plugin/filemanager/browser/default/browser.html?Connector=../../connectors/php/connector.php&Type=Image&CKEditor=content&CKEditorFuncNum=1&langCode=en

    http://wordpress.org/extend/plugins/bulletproof-security/

  2. AITpro
    Member
    Plugin Author

    Posted 2 years ago #

    I have not looked at this plugin to see what it is doing so you should look at the coding to ensure it is safe.

    it looks like you can use a Query String .htaccess skip rule.

    Grab a unique portion of the Query String and create a skip rule.

    Example:

    # PLUGINS AND VARIOUS EXPLOIT FILTER SKIP RULES
    # IMPORTANT!!! If you add or remove a skip rule you must change S= to the new skip number
    # Example: If RewriteRule S=5 is deleted than change S=6 to S=5, S=7 to S=6, etc.

    # FCK 403 Query String skip rule
    RewriteCond %{QUERY_STRING} add-your-unique-query-string-here(.*) [NC]
    RewriteRule . - [S=13]

    # Adminer MySQL management tool data populate
    RewriteCond %{REQUEST_URI} ^/wp-content/plugins/adminer/ [NC]
    RewriteRule . - [S=12]

  3. thezaib
    Member
    Posted 2 years ago #

    Thanks a lot. Require little bit of understanding. But it works like magic. :D Cheers.

  4. AITpro
    Member
    Plugin Author

    Posted 2 years ago #

    Cool. And yeah .htaccess code looks a bit confusing, but it is actually pretty easy to work with once you get how the "rules" work. ;) One of these days i will put together a post that breaks down .htaccess coding in layman's terms. I see a lot of sites that have good examples of .htaccess coding, but not one of them is doing a coding character by character explanation. One of these days....

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic