And another quetion… i have severals logs but no rule…
24/Feb/16 11:52:34 #2493189 high – 121.xxx POST /xmlrpc.php – Access to WordPress XML-RPC API – [/xmlrpc.php]
24/Feb/16 11:53:27 #4384796 high – 121.xxx POST /xmlrpc.php – Access to WordPress XML-RPC API – [/xmlrpc.php]
Are this requests blocked, or only an info in the Firewall log?
Hi,
I cannot reproduce that issue. I just tried with 3 different sites and they all sent the right headers:
HTTP/1.1 200 OK
Server nginx
Date Wed, 24 Feb 2016 14:42:16 GMT
Set-Cookie xxxxxxxxxxxxxxxxxxxxxx; HttpOnly
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-XSS-Protection 1; mode=block
Do you see any error/warning in the firewall “Overview” page?
Are you using the ‘.htninja’ user configuration file and have some code to whitelist IPs or anything similar?
If you try again the same test from securityheaders.io, do you see that request from the Live Log page?
Are this requests blocked, or only an info in the Firewall log?
They are blocked. If you see ‘critical’, ‘high’, and ‘medium’ in the LEVEL column, it means it was blocked.
If you see ‘info’, the corresponding log line will give more details about it (admin login, update, sanitized input etc).
I can use any header check tool…(https://redbot.org/) no way it’s work on different sites. But before the update i have checked that is work correct. Pretty shure that this headers remove after update to new version 3.0.
ah sorry my fault… Caching Problem 🙁 Sorry for this.
