Support » Plugin: NinjaFirewall (WP Edition) - Advanced Security » Whitelist Admin & Security Check

  • Resolved ChriStef

    (@christef)


    Hello,

    I understand that when login as admin the firewall whitelist the current session. And do not processing any rules or show in live logs! Is this normal? I think is a security risk this approach when using a comprimized installation. More on this if you preview the blog or go to blog url, the session is still whitelisted.

    Thanks,
    Christos.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author nintechnet

    (@nintechnet)

    If your site is compromised, you cannot trust any applications installed on it, and that includes NinjaFirewall too.
    Regarding the session, it will timeout anyway after a while. This is defined in your server PHP configuration.

    Thank you for your quick response.

Viewing 2 replies - 1 through 2 (of 2 total)
  • You must be logged in to reply to this topic.