BulletProof Security
[resolved] How to get past a specific 403 (3 posts)

  1. leejosepho
    Posted 2 years ago #

    No problem here, I just need to know what to tweak I need to get past this when I click my audio player's download button:

    403 Permission Denied
    You do not have permission for this request /wp-content/plugins/wp-miniaudioplayer/map_download.php?filename=1997_02.mp3&fileurl=http://www.nonameyet.org/wp-content/uploads/1997_02.mp3

    And, I am assuming that comes from BPS doing its job well!

    PS: I presently have that button hidden from sight.


  2. AITpro
    Plugin Author

    Posted 2 years ago #

    This link is simulating an RFI hacking URL that is why BPS is blocking it.

    RFI URL pattern: http:...hackerfile=http:...

    You will need to create a skip/bypass rule for this plugin. This skip/bypass rule will go above skip/bypass rule #12 in your root htaccess file. You can also add this skip/bypass rule to BPS Custom Code so that it is saved permanently.

    # wp-miniaudioplayer skip/bypass rule
    RewriteCond %{REQUEST_URI} ^/wp-content/plugins/wp-miniaudioplayer/ [NC]
    RewriteRule . - [S=13]
  3. leejosepho
    Posted 2 years ago #

    I will get back to that and make that addition a bit later, and many thanks!

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic