Support » Plugin: WP-Sentinel » [Plugin: WP-Sentinel] Getting false positives from my editors

  • Although my site is 3.3.1 I was getting these false positives with 3.2.1 too. I don’t have this problem, but two of my editors are getting locked out. My editor just got blocked after one try.

    I think it might be a conflict between her browser and the plugin. I use Chrome and I don’t have problems with it.

    Is there anything I can have them try to resolve this issue? I love the plugin otherwise.

    http://wordpress.org/extend/plugins/wp-sentinel/

Viewing 5 replies - 1 through 5 (of 5 total)
  • Hello

    getting false WARNING all the time after update. login as Editor

    Attack details follow :

    – Variable content of the POST method triggered the filter ‘html breaking injections including whitespace attacks’ …

    – Variable content of the POST method triggered the filter ‘basic directory traversal’ …

    – Variable content of the POST method triggered the filter ‘common comment types’ …

    – Variable content of the POST method triggered the filter ‘basic SQL authentication bypass attempts 2/3’ …

    I use firefox (as always) btw. I have deactivate the plugin for now. I really like the plugin. What I missing?

    This excellent plugin has really saved my site from countless attacks (average 2300 attacks per day).

    But I am having the same problem: my editors are getting locked out after the second intent to post an entry.

    And there are no means to whitelist an ip address. That is what I think is missing.

    Other than that, this plugin has been a lifesaver for us.

    Like rwilki, i am getting false positives with my editors.

    We run a techie blog, and any time we try and put any kind of code snippet it blocks the poster – despite them being logged in as an editor or similar user.
    Whilst the readme says “WP-Sentinel will NOT check requests from the user logged in as administrator” it will check the guys who are still posting blog posts, and no i have no plans to make them an administrator just to get the plugin going 🙂

    Agreed – there are way too many false positives with this plugin. It would be better if we could edit the list of banned character combinations (e.g. — is a common one).

    like BerettaNZs thoughts OR if there was a way to whitelist IPs somehow…

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘[Plugin: WP-Sentinel] Getting false positives from my editors’ is closed to new replies.