wordfence options getting changed everyday without my intervention

  • Resolved fatimajesus

    (@fatimajesus)


    7 years ago

    Hello
    since about a week, I find everyday some change either on wordfence firewall – white listed files not put there by me- or on options.
    Yesterday I deleted the plugin and all data and reinstalled again. But little time after that, I had a excluded file on «exclude from scan recently modified flies»… today, I found the following on option « exclude the files from scan, one per line»:
    wp-content/uploads/fvm/cache/header-bd5c4313-1487884130.min.css.gz

    Yesterday I contacted my hosting support and asked them if they did make any changes on the plugin since I have managed wordpress and they told me that didn’t have any notice of that. No one accesses my site besides me and I am very carefull about logincredentials. the site has no malware detected. So, is it possible that there is some vulnerability of the wordfence plugin that alows this change? How can someone change my options and exclude files from scanning or from the firewall? Another issue is that wordfence almost never finishes a scan now, without killing the one that is hanging ,
    thanks

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support wfphil

    (@wfphil)

    7 years ago

    Hello,

    It appears from looking at the file path provided that you have the Fast Velocity Minify plugin installed.

    When Wordfence has difficulty scanning certain files it will add them to the “Exclude files from scan that match these wildcard patterns (one per line)” text box.

    The header-bd5c4313-1487884130.min.css.gz compressed folder has a lot of minified CSS code in it. This can cause a lot of lookups to the Wordfence servers. We are currently working on some improvements to certain file scans such as this and should be improved in a future version of Wordfence.

    In the meantime please disable the option “Scan images, binary, and other files as if they were executable” on the “Scan” page. This may help to allow scans to complete successfully.

    Thread Starter fatimajesus

    (@fatimajesus)

    7 years ago

    Thank you so much for your help. in fact i have the fast velocity minify plugin installed. I will proceed as you advise, because the option you refer is activated on Wordfence. I am happy that this is a minor issue that has nothing to do with security.

    Plugin Support wfphil

    (@wfphil)

    7 years ago

    Hello,

    You’re welcome, glad to be of assistance!

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘wordfence options getting changed everyday without my intervention’ is closed to new replies.