Title: MainWP
Last modified: August 30, 2016

---

# MainWP

 *  Resolved [Barry Veinotte](https://wordpress.org/support/users/bveinotte/)
 * (@bveinotte)
 * [10 years, 5 months ago](https://wordpress.org/support/topic/mainwp-4/)
 * Getting 403 errors when connecting to a child site from the main dashboard in
   Main WP since the upgrade to WordPress 4.4
 * Not all sites, just some but the settings may be different on them. Is there 
   a particular setting I should look for to allow connecting from the [MainWP](https://en-ca.wordpress.org/plugins/mainwp/)
   dashboard?
 * Seems to be rule 306. I am going to try to find out exactly that that is to decide
   it disabling it would be wise.
 * [https://wordpress.org/plugins/ninjafirewall/](https://wordpress.org/plugins/ninjafirewall/)

Viewing 11 replies - 1 through 11 (of 11 total)

 *  Plugin Author [nintechnet](https://wordpress.org/support/users/nintechnet/)
 * (@nintechnet)
 * [10 years, 5 months ago](https://wordpress.org/support/topic/mainwp-4/#post-6835675)
 * Hi
 * Can you check your HTTP access log and paste here the browser/user-agent signatures
   that were blocked?
    Rule 306 deals with bogus (fake, old) UA signatures.
 *  Thread Starter [Barry Veinotte](https://wordpress.org/support/users/bveinotte/)
 * (@bveinotte)
 * [10 years, 5 months ago](https://wordpress.org/support/topic/mainwp-4/#post-6835685)
 * I can’t seem to find it in any of the server logs. Not being logged?
 *  Plugin Author [nintechnet](https://wordpress.org/support/users/nintechnet/)
 * (@nintechnet)
 * [10 years, 5 months ago](https://wordpress.org/support/topic/mainwp-4/#post-6835686)
 * You can also check NinjaFirewall’s log, it will display a similar line:
 * > 09/Dec/15 13:27:20 #5680277 medium 306 xxx.xx.11.95 GET /index.php – Bogus 
   > user-agent signature – [**SERVER:HTTP_USER_AGENT = Mozilla/4.0 (compatible;
   > MSIE 6.0; Windows NT 5.1; SV1)**]
 *  Thread Starter [Barry Veinotte](https://wordpress.org/support/users/bveinotte/)
 * (@bveinotte)
 * [10 years, 5 months ago](https://wordpress.org/support/topic/mainwp-4/#post-6835705)
 * Right. Doh! Just a sec my log on one site is being hammered right now…
 * This is not the related item – it is the one I am being nailed with at the moment.
   Glad they are being blocked.
 * 10/Dec/15 11:57:46 #0000000 info – 166.62.91.110 POST /wp-admin/admin-ajax.php–
   Sanitising user input – [REQUEST: [“Better WP Security”,”Secure WordPress”,”Wordpress
   Firewall”,”Bad Behavior”,””]]
    10/Dec/15 11:57:46 #0000000 info – 166.62.91.110
   POST /wp-admin/admin-ajax.php – Sanitising user input – [REQUEST: [“”]]
 *  Thread Starter [Barry Veinotte](https://wordpress.org/support/users/bveinotte/)
 * (@bveinotte)
 * [10 years, 5 months ago](https://wordpress.org/support/topic/mainwp-4/#post-6835706)
 * Not the right one… this is.
 * 10/Dec/15 05:55:27 #4729499 medium 306 104.238.101.138 POST /wp-admin/admin-ajax.
   php – Bogus user-agent signature – [SERVER:HTTP_USER_AGENT = Mozilla/4.0 (compatible;
   MSIE 5.01; Windows NT 5.0)]
    10/Dec/15 05:55:31 #3610215 medium 306 104.238.101.138
   POST /index.php – Bogus user-agent signature – [SERVER:HTTP_USER_AGENT = Mozilla/
   4.0 (compatible; MSIE 5.01; Windows NT 5.0)]
 *  Plugin Author [nintechnet](https://wordpress.org/support/users/nintechnet/)
 * (@nintechnet)
 * [10 years, 5 months ago](https://wordpress.org/support/topic/mainwp-4/#post-6835717)
 * Here it is: [Line 98](https://plugins.trac.wordpress.org/browser/mainwp/tags/2.0.30/class/MainWPUtility.class.php#L98).
   There are a total of 6 occurrences in that file.
    It pretends to be an Internet
   Explorer 5.0 (which was released in March 1999) running on Windows 2000 (NT 5.0).
   Obviously, it is detected as a bogus UA, and blocked by NinjaFirewall rule ID
   306. The problem is that many WAFs are likely going to block it too. I suggest
   to contact the author and to ask him whether he would like to change the signature.
   Since the plugin is MainWP and service is mainwp.com, a signature like this one
   would be better IMHO:
 *     ```
       Mozilla/5.0 (compatible; MainWP/2.0.30; +http://mainwp.com)
       ```
   
 *  Thread Starter [Barry Veinotte](https://wordpress.org/support/users/bveinotte/)
 * (@bveinotte)
 * [10 years, 5 months ago](https://wordpress.org/support/topic/mainwp-4/#post-6835722)
 * Yes I am going to pass that on to them. I have NF running everywhere and had 
   to manually go to each and disable rule 306.. No fun at all.
 * Thanks for everything!
 *  [mainwp](https://wordpress.org/support/users/mainwp/)
 * (@mainwp)
 * [10 years, 5 months ago](https://wordpress.org/support/topic/mainwp-4/#post-6835866)
 * Barry & Nintechnet we just [released a Beta](http://blog.mainwp.com/call-out-for-mainwp-beta-testers)
   that has the suggested changes added if you want to test that version.
 *  Thread Starter [Barry Veinotte](https://wordpress.org/support/users/bveinotte/)
 * (@bveinotte)
 * [10 years, 5 months ago](https://wordpress.org/support/topic/mainwp-4/#post-6835869)
 * I am getting ready to add sites to the Beta now. I would say wish me luck, but
   I really don’t think I need it 🙂
 *  Thread Starter [Barry Veinotte](https://wordpress.org/support/users/bveinotte/)
 * (@bveinotte)
 * [10 years, 5 months ago](https://wordpress.org/support/topic/mainwp-4/#post-6835873)
 * Thank you for your time and help folks!
 * The beta is running on ten sites and I have started turning rule 306 back on.
   No issues so far so it looks this the new MainWP has this fixed.
 * Barry
 *  Plugin Author [nintechnet](https://wordpress.org/support/users/nintechnet/)
 * (@nintechnet)
 * [10 years, 5 months ago](https://wordpress.org/support/topic/mainwp-4/#post-6835883)
 * Thanks for your help, Mainwp.

Viewing 11 replies - 1 through 11 (of 11 total)

The topic ‘MainWP’ is closed to new replies.

 * ![](https://ps.w.org/ninjafirewall/assets/icon-256x256.png?rev=976137)
 * [NinjaFirewall (WP Edition) - Advanced Security Plugin and Firewall](https://wordpress.org/plugins/ninjafirewall/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/ninjafirewall/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/ninjafirewall/)
 * [Active Topics](https://wordpress.org/support/plugin/ninjafirewall/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/ninjafirewall/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/ninjafirewall/reviews/)

 * 11 replies
 * 3 participants
 * Last reply from: [nintechnet](https://wordpress.org/support/users/nintechnet/)
 * Last activity: [10 years, 5 months ago](https://wordpress.org/support/topic/mainwp-4/#post-6835883)
 * Status: resolved