[Plugin: BulletProof Security] Kimili Flash Embed – Forbidden in admin

Resolved karloy
(@karloy)

11 years, 8 months ago

Hi,

After adding bullet proof security, I get the following error when trying to use the Kimili Flash Embed add-in:

Editor URL
http://www.mydomain.com/wp-admin/post.php?post=9912&action=edit

Triggers a 403 when trying to access the URL below.

Forbidden

You don’t have permission to access /wp-content/plugins/kimili-flash-embed/admin/config.php on this server.

Is there any issue with cross folder access?

Thanks,
Jens

http://wordpress.org/extend/plugins/bulletproof-security/

Viewing 7 replies - 1 through 7 (of 7 total)

Plugin Author AITpro
(@aitpro)

11 years, 8 months ago

The 403 error is actually a good thing because it is not allowing direct public access to the path you have provided above, which you definitely do not want.

I actually use the Kimli Flash Embed plugin on my site and it is not blocked by BPS so my question is what exactly are you trying to do on your site? I can’t think of a good reason to have a link pointing to the kimli admin folder and to a config file. Your link should be pointing to a Flash SWF file. So please explain or provide a link to exactly what you are trying to do with Kimli.

Or if this is only happening in the WP Dashboard admin area then most likely you have not activated BulletProof Mode for your wp-admin folder, which would mean the root .htaccess security filters are being applied to the wp-admin folder.

Plugin Author AITpro
(@aitpro)

11 years, 8 months ago

Is this problem still occurring. If so please post specific details about the problem.

Plugin Author AITpro
(@aitpro)

11 years, 8 months ago

Resolving due to lack of response. If the problem is still occurring then please post whether or not this is occurring in the backend or the frontend of WP.

Thread Starter karloy
(@karloy)

11 years, 8 months ago

It’s in the editor, the Kimili assistant to create the Flash tag – it’s loading the configuration form from another the URL mentioned above. Thanks.

Plugin Author AITpro
(@aitpro)

11 years, 8 months ago

Ok even though I currently use Kimili on my websites (and have for years) I have never clicked on the frontside Edit button so i just tested this and it works fine. /wp-admin/post.php?post=18&action=edit

BPS does not generate a 403 error when i click on the Edit button and i cannot find any other compatibility issues so try this.
Deactivate all of your plugins except for Kimili and BPS and then test the Edit link.

Also check that your root .htaccess file actually contains the correct BPS .htaccess code. if you are using another security plugin it may have wiped out or altered the BPS security coding and also if you are using the cPanel HotLink Protection Tool it will also wipe out your root .htaccess file coding >>> http://wordpress.org/support/topic/plugin-bulletproof-security-broken-cpanel-hotlink-tool-404-errors-unable-to-edit-htaccess-files?replies=4

Thread Starter karloy
(@karloy)

11 years, 8 months ago

Thanks, I ended up going another route, it’s probably a complicated plug-in conflict on my side. But great support!

Plugin Author AITpro
(@aitpro)

11 years, 8 months ago

Yep either another plugin is breaking Kimili or it is the old cPanel HotLink Protection Tool problem. And 403 errors are not necessarily caused by BPS, since 403 errors are just a standard error message that could be generated for any reason. Thanks.

Viewing 7 replies - 1 through 7 (of 7 total)

The topic ‘[Plugin: BulletProof Security] Kimili Flash Embed – Forbidden in admin’ is closed to new replies.