WordPress.org

Ready to get started?Download WordPress

Forums

BulletProof Security
[resolved] Press this bookmarklet does not work when this plugin is active (8 posts)

  1. BabakF
    Member
    Posted 2 years ago #

    Hi, I like your plugin and have tried using it. But I noticed that the press this bookmarklet that has been one great feature of WP stops working when I have BPS active. I get an access error message:

    You do not have permission for this request /wp-admin/post-new.php?u=http//xx.xx.xx

    Do you have a solution for this? Thanks a lot in advance!

    http://wordpress.org/extend/plugins/bulletproof-security/

  2. AITpro
    Member
    Plugin Author

    Posted 2 years ago #

    Are you talking about the WP built-in Press This feature in Settings > Writing? If so, can you be more specific about exactly what you are doing and what is not working exactly. Thanks.

  3. AITpro
    Member
    Plugin Author

    Posted 2 years ago #

    BPS does not block the built-in WordPress Press This feature. Other plugins that do block this are the Website Defender plugins. Resolving this post.

  4. BabakF
    Member
    Posted 2 years ago #

    Hi, if you go in WP dashboard to tools->available tools there is something called "Press this". This is a bookmarklet that allows you to create a post from the page in your browser. The error message I get when BPS is active is related to this bookmarklet.

    I have never used Website Defender plugin.

    Regards.

  5. AITpro
    Member
    Plugin Author

    Posted 2 years ago #

    Ok i do not use and have never used this WP feature so can you be more specific about exactly what you are doing and what is not working exactly. What i mean by specific is this. step 1 - i do this, then step 2 i do this, then on step 3 this error and problem occurs. Thanks.

  6. AITpro
    Member
    Plugin Author

    Posted 2 years ago #

    Ok i had some spare time so i played around with this. this was a really simple fix that i could have given you in 5 minutes if you had explained step 1, etc. For future reference if you want a quick answer then provide a good question. ;) Thank you for reporting this issue.

    Add this .htaccess code shown below in your wp-admin .htaccess file - NOT YOUR ROOT .htaccess file. And not all the code - just the portion of .htaccess code shown after # REQUEST METHODS FILTERED and before the start of the BPS security filters.

    # REQUEST METHODS FILTERED
    RewriteEngine On
    RewriteCond %{REQUEST_METHOD} ^(HEAD|TRACE|DELETE|TRACK|DEBUG) [NC]
    RewriteRule ^(.*)$ - [F,L]
    
    # Allow wp-admin files that are called by plugins
    # Fix for WP Press This
    RewriteCond %{REQUEST_URI} (press-this\.php) [NC]
    RewriteRule . - [S=1]
    
    RewriteCond %{HTTP_USER_AGENT} (<|>|'|%0A|%0D|%27|%3C|%3E|%00) [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} (libwww-perl|wget|python|nikto|curl|scan|java|winhttp|HTTrack|clshttp|archiver|loader|email|harvest|extract|grab|miner) [NC,OR]
    RewriteCond %{THE_REQUEST} \?\ HTTP/ [NC,OR]
    RewriteCond %{THE_REQUEST} \/\*\ HTTP/ [NC,OR]
    RewriteCond %{THE_REQUEST} etc/passwd [NC,OR]
    RewriteCond %{THE_REQUEST} cgi-bin [NC,OR]
    RewriteCond %{THE_REQUEST} (%0A|%0D) [NC,OR]
    .....
    .....
    .....

    Since there is a conflict with WP's Press This functionality and this is a safe thing to add as a standard to BPS, this code will be included as standard wp-admin .htaccess coding in the next release of BPS >>> BPS .46.9.

  7. BabakF
    Member
    Posted 2 years ago #

    Thanks a lot AITPro! Thanks for taking time. I will try this and report if any further errors. This time I will be more precise ;-)

  8. AITpro
    Member
    Plugin Author

    Posted 2 years ago #

    Thank you for reporting this because this is something i was not aware of and BPS was blocking the Press This WP functionality. :) :) :)

    And my previous comment could be taken the wrong way so i just want to let you know that i was only suggesting the best approach at getting quick answers in a friendly way, but my previous post could be interpreted as i was lecturing you. LOL I was not. I have a tendency to speak very directly and sometimes it comes across as borderline offensive. ;) Thank you again for this very important catch and info.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic