Firewall has detected files…

Resolved

(@airflame)

Hi i have a problem this come up on my email today. First of all i did not find.

– wp-content/themes/index.php <– dont have this folder or file
– wp-content/plugins/index.php <- seems fine “gold is silance”
– wp-includes/version.php <– seems to be fine same as other wordpresses i use.

WordPress Security Firewall has detected files on your site with potential problems. <a href="http://icwp.io/moreinfochecksum">Więcej Informacji</a>
Site - <a href="http://www..................." target="_blank">P..............</a>
Details for the files are below:

The MD5 Checksum Hashes for following core files do not match the official WordPress.org Checksum Hashes:
 - wp-content/themes/index.php
 - wp-content/plugins/index.php
 - wp-includes/version.php

You should review these files and replace them with official versions if required.

This email was sent as part of the WordPress Security Firewall plugin, provided by <a href="http://icwp.io/shieldicontrolwpemailfooter"><strong>iControlWP - WordPress Management and Backup Protection For Professionals</strong></a>.

https://wordpress.org/plugins/wp-simple-firewall/

Viewing 5 replies - 1 through 5 (of 5 total)

Plugin Author Paul
(@paultgoodchild)

8 years, 2 months ago

Please take a look at this thread and it will explain it;
https://wordpress.org/support/topic/problem-with-checksum-hashes

Johnathan.PRO
(@evanspress)

8 years, 2 months ago

I’ve got to say this is a nice feature but the notifications have to be optional. You also need to see with making this work with GoDaddy Managed WP Hosting better. I exclusively install this plugin with every site I setup for clients. The two things that are killing me are the nag notices at the top which are very large and this new feature. I know they are there for a reason but the constant nags in the backend and the emails have me getting around 2 to 5 emails per day on average about concerns. The new feature needs to be tweaked to work with GMWH as you are sending out warnings about install.php being altered. Install.php is altered because of the way GMWH sets up the accounts I believe.

Thread Starter AirFlame
(@airflame)

8 years, 2 months ago

Paul G. thx that explains the problem.

Plugin Author Paul
(@paultgoodchild)

8 years, 2 months ago

@airflame – no problem! 🙂

@evanspress
I don’t have a Godaddy managed WP hosting account so I can’t specifically test their system.

When you say 2-5 emails per day, what emails are you referring to? This feature has been live only for the past 36hrs. If it’s firewall notice emails, you can turn them off. You can also turn off most Dashboard notifications.

If Godaddy do something custom to the core files, they need to document it. But I can be pretty sure that if it’s whacky, I’m not writing in custom workarounds for them. Godaddy is the bane of my life when it comes to catering to their needs.

Regarding the altered index.php notice, this isn’t specific to Godaddy and it was resolved with a patch I released yesterday.

Thanks!

Thread Starter AirFlame
(@airflame)

8 years, 2 months ago

@paul G. have a question about the register pasword link expire problem. Did someone maybe report the problem like this ? Using Your plugin ?

Viewing 5 replies - 1 through 5 (of 5 total)

The topic ‘Firewall has detected files…’ is closed to new replies.