WordPress.org

Ready to get started?Download WordPress

Forums

BulletProof Security
[resolved] Feedburner Redirect URLs reporting 403 errors (28 posts)

  1. chikorita157
    Member
    Posted 1 year ago #

    I recently installed the plugin and now none of the posts on the Feedburner feed will load. It will throw a 403 error since it doesn't like "utm_source=feedburner&utm_medium=feed&utm_campaign=". I try adding and exception, but I can't get it to work... This is what I have:

    #Feedburner
    RewriteCond %{QUERY_STRING} utm_source=feedburner&utm_medium=feed&utm_campaign=(.*) [NC]
    RewriteRule . - [S=2]

    Is this correct... If not, can you provide a correct rewrite rule.

    http://wordpress.org/extend/plugins/bulletproof-security/

  2. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    BPS does not normally block any Feeds or Feed plugins. Which plugin is this?
    I don't see anything in that query string that BPS would block. I notice that you have [S=2] for the RewriteRule. Are you trying to add it to your wp-admin .htaccess file? You should not add any RewriteRules in your wp-admin .htaccess file and only add them in your Root .htaccess file.

    I doubt seriously that the real issue is that you need a skip rule for whatever Feedburner plugin you are using, but if you want the correct .htaccess skip / bypass code for that query string it would be...

    # Feedburner skip / bypass
    RewriteCond %{QUERY_STRING} utm_source=feedburner(.*) [NC]
    RewriteRule . - [S=13]

    This skip rule would go above skip rule #12 and if it works then add it to Custom Code in the Plugin fixes text area.

    And this is some interesting looking .htaccess code for "the Feedburner" on the askapache website. I don't use Feedburner myself, but this .htaccess code does some very nice things.
    http://www.askapache.com/htaccess/redirecting-wordpress-feeds-to-feedburner.html

    And i came across an issue with Feedburner and WPSC that is dated 2010 so it may not still be an issue >>> http://blog.tigertech.net/posts/wp-super-cache-and-feedburner/

  3. chikorita157
    Member
    Posted 1 year ago #

    That seemed to work, but if I browse any page after viewing a page coming from a feedburner URL, I get a 403 error.

  4. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    What seemed to work?
    Not sure what you mean by "but if I browse any page after viewing a page coming from a feedburner URL, I get a 403 error"?

    I don't use Feedburner myself so I am not exactly sure about what you are saying.

    Please describe what is working and not working in specific detail. Thanks.

  5. chikorita157
    Member
    Posted 1 year ago #

    I got the utm_source working, but If I browse a different page, it throws a 403 error along with a 500 error when it tried to get the custom error page.

  6. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Ok got the first part - the .htaccess skip / bypass rule does do something.
    Now what does "browse a different page" mean?
    What does "get the custom error page" mean?
    Please provide specific details with examples.

  7. chikorita157
    Member
    Posted 1 year ago #

    As you see below, the page loads correctly from the feedburner
    http://skitch.chikorita157.com/Reeder-20120526-111902.png

    When I browse to a different page on the site, I get this error
    http://skitch.chikorita157.com/Reeder-20120526-112000.png

    If I browse the page from a different source like Google+, Twitter or directly, it doesn't have this problem.

  8. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    So it looks like there is some kind of problem with your site map? Or the way the page with the error is being loaded from the site-map URL.
    The difference between the 2 URLs shows that one is loading a URL that is not coming from your site map and the other URL shows your site map in the URL and the 403 error message "you don't have permission to access /site-map on this server."

    I am not sure what you are doing with the site map, but that seems to be the problem. Since i do not really know what you are doing i can only suggest creating a skip / bypass rule like this. This skip rule would go above skip rule #13 and is skip rule #14.

    # Site Map bypass / skip rule
    RewriteCond %{REQUEST_URI} ^/site-map/ [NC]
    RewriteRule . - [S=14]

    or you could probably do something like this if you are treating the site map like it is a page outside of WordPress. The RewriteRule would go after the beginning of the WordPress .htaccess loop.

    RewriteEngine On
    RewriteBase /
    RewriteRule ^index\.php$ - [L]
    
    # RewriteRule for Custom Apps outside of WP
    RewriteRule ^site-map/ - [L]
  9. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Is the issue resolved or not resolved?

  10. chikorita157
    Member
    Posted 1 year ago #

    I'm figuring out the issue as it happens to every page with a separate WordPress install... and it seems that Cloudflare might be causing the issue, although I'm checking out every possibility.

  11. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    So it has nothing to do with your site map even though the error plainly says the problem is the site map URL? Your other URL that is a normal permalink URL is fine, but the link pointing to your site map is generating an error. Maybe i am missing something here, but why would you have any links at all coming from a site map and going to Feedburner?

    The only issue with CloudFlare occurs with BPS Pro and it is a minor issue. CloudFlare changes the DNS record information for websites so if you need to extract / get DNS record information about a particular website you can no longer get the original DNS info because the DNS records all reflect CloudFlare DNS info. Other than that BPS and BPS Pro work fine with CloudFlare.

  12. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Is the issue resolved or not resolved? Thank you.

  13. chikorita157
    Member
    Posted 1 year ago #

    It's not resolved yet since the web server is on a Virtual Private Server and I need to figure out what is causing the problem... wether or not it's a configuration problem.

  14. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Ok just post back here and resolve this thread once you figure it out. If this issue was occurring on both screenshots you posted then i would say that BPS is blocking something that should not be blocked, but since it is only occurring with the /site-map link then it is isolated to something having to do with your site map. Thanks.

    Hmm this just made me think of an issue i ran across about a year ago where someone was using invalid or bad characters in their site map links. Bad characters will not only be blocked by BPS, but these could also get you in trouble with Google. So you should go through your site map and make sure you do not have bad characters in your site map URLs.

  15. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Wow i just looked at your site map - it is a disaster. You have all kinds of invalid / bad characters in it. The URLs with valid characters will open your image files - the rest of links with invalid / bad characters generate 404 errors because the are using invalid / bad characters.

    — are invalid / bad characters in a URL

    Test_—_Just_another_WordPress_site

    Your meta tag is not using UTF-8
    <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />

    change it too
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />

  16. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Oh and this is for the subdomain URL that you posted in this thread. Your main site - site map is relatively ok with the exception of it also generates a silent 404 error. So there is an issue in your main site map as well as your subdomain site map.

  17. chikorita157
    Member
    Posted 1 year ago #

    What are you talking about? I don't have a such site as Test on my domain, unless you are mistakenly replying to the wrong post...

    http://chikorita157.com/sitemap.xml

  18. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    try adding /site-map after your main URL. I was not talking about your XML sitemap.

    Also i don't mind offering a little extra support for miscellaneous website problems, but this area is primarily intended for supporting BPS issues and conflicts and not for general website problems. Thanks.

  19. chikorita157
    Member
    Posted 1 year ago #

    I figured out the error... it seems in some circumstances that a link with that referrer causes a infinite loop due to some server configuration. So I need to fix the Apache2 configuration since it has nothing to do with this plugin...

    [Tue May 29 22:08:58 2012] [error] [client] Request exceeded the limit of 10 internal redirects due to probable configuration error. Use 'LimitInternalRecursion' to increase the limit if necessary. Use 'LogLevel debug' to get a backtrace., referer: http://chikorita157.com/2012/05/28/mouretsu-pirates-episode-21-unexpected-company/?utm_source=feedburner&utm_medium

  20. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    ok here is some code that will help with that. Also a common spammer / hacking attack to overload the Server resources is to cause infinite loops / DoS attack.

    Prevents typically innocent 200 infinite loops

    # .htaccess Fix for General Infinite Loops
    RewriteEngine On
    RewriteCond %{ENV:REDIRECT_STATUS} 200
    RewriteRule .* - [L]

    Prevents typically malicious / spammer attack loops that are not 200

    # .htaccess Fix for Infinite Loops that are not 200
    RewriteEngine On
    RewriteCond %{REQUEST_URI} ^.*\.(php|cgi)$
    RewriteCond %{ENV:REDIRECT_STATUS} !=200
    RewriteRule .* - [F]
  21. chikorita157
    Member
    Posted 1 year ago #

    I fixed it... just redone the permalinks and it works without any major problems.

    Update: Didn't work... it still does that...

  22. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Use the infinite loops .htaccess code i provided above. it should fix the problem.

  23. chikorita157
    Member
    Posted 1 year ago #

    Okay, I think it's an issue with PHP5-FPM as the pages sometimes load with the Bulletproof htaccess and other times, give an 403 error even with the fix you give. I need to investigate this more in a virtual machine instead of messing up my production site.

  24. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Hmm FastCGI in general is a very bad thing with WordPress, but i have never played around with PHP5-FPM so it may not have the same adverse effects as plain FastCGI does on WordPress.

    Ok at this point i am going to put this thread in Resolved status, but you can of course continue to post here if you want. Let me know how it all turns out. Thanks

  25. chikorita157
    Member
    Posted 1 year ago #

    I figured the fastcgi thing might be a problem since PHP5_FPM depends on it... I need to switch to mod_proxy_fcgi, but that will be another project later in the future if I don't decide to switch to nginx, but thanks anyways.

  26. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Yep everything i have ever found by googling WordPress and FastCGI in the search string has led to posts about all the problems people have with using FastCGI and WP together. I don't really understand the inner workings of Ubuntu and Nginx and of course PHP5_FPM at this stage, but these things are all on my list of "things to know more about". ;)

  27. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    And a heads up to anyone else who finds this thread.
    The majority of infinite loops problems are caused by a Custom Permalink Structure problem. There is a syntax error in the Custom Permalink Structure that was typed in. Examples: missing a forward or trailing slash, not adding the % sign before or after tags, etc. in the Custom Permalink Structure. And i am not sure about this, but i think using an old technique of adding .html may also break things. Example: /%postname%.html/. In any case it is an old technique for SEO that may have worked at one time for SEO, but it is completely defunct/useless these days for SEO.

    Correct format/syntax
    /%year%/%postname%/
    /%post_id%/%postname%/

    http://codex.wordpress.org/Using_Permalinks

  28. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    oh and i didn't notice this at first.

    What are you talking about? I don't have a such site as Test on my domain, unless you are mistakenly replying to the wrong post...

    In the root of your subdomain site you have a Directory Listing that contains URLs that have invalid / bad characters.

    Test_—_Just_another_WordPress_site

    is a portion of one of those bad URL's and the meta tag is ISO not UTF-8 for that Directory Listing.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags

No tags yet.