Thread Starter
Rhand
(@rhand)
I see xmlrpc access allowed in error logs:
[Sun Mar 01 02:35:25 2015] [error] [client xx.xxx.1.2] ModSecurity: Access allowed (phase 2). Matched phrase "wp-iphone" at REQUEST_HEADERS:User-Agent. [file "/dh/apache2/template/etc/mod_sec2/999_dreamhost_request_limits.conf"] [line "2"] [id "999000"] [hostname "domain.com"] [uri "/xmlrpc.php"] [unique_id "id-number"]
But my post updated on my iPhone gets errors when I try to update the draft. So I am still blocked even though the eror log states it is allowed.
I prefer not to turn off mod_secrutiy, but I might. Does seem to mean this is not WordFence related though.
wp-iphone isn’t something that the WordPress iphone app actually sends. Also we white listed that app at DreamPress, so unless you were actually posting at 2am, that’s probably not it.
Do you have a ticket open at DreamHost? I can take a look here if you;’d like 🙂
Thread Starter
Rhand
(@rhand)
@ipstenu. Opened a ticket at Dreamhost now as well. Mentioned this issue in a ticket with multiple issues. If you can take a look at it great as they are all WordPress related. Once the WordPress iOS app issue are solved I will post back here too.
Awesome!
I found your ticket and I’m replying there. The IP in the example you gave is from Bahrain which I suspect isn’t you…
@ipstenu So is this a wordfence issue or is this something that can be addressed at DH?
tim
Thread Starter
Rhand
(@rhand)
@ipstenu Thanks. Yes, Bahrain is me. It is where I am based at the moment
