Support » Plugin: Visual Portfolio, Posts & Image Gallery » New VP Lazy load interferes with .htaccess settings and other Lazy load Plugins

  • Resolved wildeast

    (@wildeast)


    Hi,

    after updating VP today I’ve got the well known “grey images” problem.

    By reading here, I found out, that:
    * VP “Lazy Load” interferes with my Image Optimiser “Lazy Load”
    (there can be only one)
    * VP “Lazy Load” also interferes with my All in One Security Setting
    “Additional Firewall rules, Advanced char string filter” setting.

    So for me, I disable VP “Lazy load” and activate it somewhere else.
    I can not compromise on Security.

    But it might be interesting for others and the developers.

    Best regards,
    Stefan

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author nK

    (@nko)

    Hey.

    1. As I answered in your other topic, the EWWW Lazy Loading conflict will be fixed in the next plugin update.

    2. I don’t see the problem with this setting. Can you clarify, what exactly happens with our gallery when this setting enabled? Our Lazy Loading is working in almost the same way as in the Jetpack plugin, so I don’t think it somehow conflicting with security https://wordpress.org/plugins/jetpack/

    3. In the topic title you mentioned the “.htaccess” file. But our plugin does nothing with this file. At all…

    Regards, nK.

    Thread Starter wildeast

    (@wildeast)

    Hi nK,

    we have Christmas over here, and I hope you have too.
    So Merry Christmas to all of you and stay healthy.

    The advanced char string filter adds the below copied part to the .htaccess file to redirect potentially malicious requests to 403 Error page.

    If that is activated and your Plugin has Lazy Load activated, the galleries show grey rectangles instead of the pictures. Similar to the lazy load problem.

    Hope that helps. If you have any more questions, do not hesitate to contact me.

    Best regards,
    Stefan

    #AIOWPS_ADVANCED_CHAR_STRING_FILTER_START
    <IfModule mod_alias.c>
    RedirectMatch 403 \,
    RedirectMatch 403 \:
    RedirectMatch 403 \;
    RedirectMatch 403 \=
    RedirectMatch 403 \[
    RedirectMatch 403 \]
    RedirectMatch 403 \^
    RedirectMatch 403 \`
    RedirectMatch 403 \{
    RedirectMatch 403 \}
    RedirectMatch 403 \~
    RedirectMatch 403 \”
    RedirectMatch 403 \$
    RedirectMatch 403 \<
    RedirectMatch 403 \>
    RedirectMatch 403 \|
    RedirectMatch 403 \.\.
    RedirectMatch 403 \%0
    RedirectMatch 403 \%A
    RedirectMatch 403 \%B
    RedirectMatch 403 \%C
    RedirectMatch 403 \%D
    RedirectMatch 403 \%E
    RedirectMatch 403 \%F
    RedirectMatch 403 \%22
    RedirectMatch 403 \%27
    RedirectMatch 403 \%28
    RedirectMatch 403 \%29
    RedirectMatch 403 \%3C
    RedirectMatch 403 \%3E
    RedirectMatch 403 \%3F
    RedirectMatch 403 \%5B
    RedirectMatch 403 \%5C
    RedirectMatch 403 \%5D
    RedirectMatch 403 \%7B
    RedirectMatch 403 \%7C
    RedirectMatch 403 \%7D
    # COMMON PATTERNS
    Redirectmatch 403 \_vpi
    RedirectMatch 403 \.inc
    Redirectmatch 403 xAou6
    Redirectmatch 403 db\_name
    Redirectmatch 403 select\(
    Redirectmatch 403 convert\(
    Redirectmatch 403 \/query\/
    RedirectMatch 403 ImpEvData
    Redirectmatch 403 \.XMLHTTP
    Redirectmatch 403 proxydeny
    RedirectMatch 403 function\.
    Redirectmatch 403 remoteFile
    Redirectmatch 403 servername
    Redirectmatch 403 \&rptmode\=
    Redirectmatch 403 sys\_cpanel
    RedirectMatch 403 db\_connect
    RedirectMatch 403 doeditconfig
    RedirectMatch 403 check\_proxy
    Redirectmatch 403 system\_user
    Redirectmatch 403 \/\(null\)\/
    Redirectmatch 403 clientrequest
    Redirectmatch 403 option\_value
    RedirectMatch 403 ref\.outcontrol
    # SPECIFIC EXPLOITS
    RedirectMatch 403 errors\.
    RedirectMatch 403 config\.
    RedirectMatch 403 include\.
    RedirectMatch 403 display\.
    RedirectMatch 403 register\.
    Redirectmatch 403 password\.
    RedirectMatch 403 maincore\.
    RedirectMatch 403 authorize\.
    Redirectmatch 403 macromates\.
    RedirectMatch 403 head\_auth\.
    RedirectMatch 403 submit\_links\.
    RedirectMatch 403 change\_action\.
    Redirectmatch 403 com\_facileforms\/
    RedirectMatch 403 admin\_db\_utilities\.
    RedirectMatch 403 admin\.webring\.docs\.
    Redirectmatch 403 Table\/Latest\/index\.
    </IfModule>
    #AIOWPS_ADVANCED_CHAR_STRING_FILTER_END

    Plugin Author nK

    (@nko)

    Hey Stefan.

    Interesting… This is just because of filename lazysizes-config.min.js. This security plugin checks for the filename part – config and return 403 for such files.

    This conflict will be fixed in the next plugin update in 1-2 days. Thank you for reporting to me.

    Merry Christmas to you 🙂

    Regards, nK.

Viewing 3 replies - 1 through 3 (of 3 total)
  • You must be logged in to reply to this topic.