Wordfence Web Application Firewall

  • Resolved America Jr

    (@cmccrone)


    6 years, 3 months ago

    Im on the “Wordfence Web Application Firewall” page and came across this.

    – – – – –
    The Wordfence Web Application Firewall is designed to run via a PHP ini setting called auto_prepend_file in order to ensure it runs before any potentially vulnerable code runs. This PHP setting is currently in use, and is including this file:

    /nas/wp/www/common/production/auto_prepends.php

    You can proceed with the installation and we will include this from within our wordfence-waf.php file which should maintain compatibility with your site, or you can opt to override the existing PHP setting.
    – – – – –

    Which button should I select?

    [Include this file] or [Override this value]

Viewing 1 replies (of 1 total)
  • wfyann

    (@wfyann)

    6 years, 3 months ago

    Hi @cmccrone,

    If you do recognize the file as something your host has provided, you can click the default button, Include this file (Recommended).

    This puts “wordfence-waf.php” in the “auto_prepend_file” value, and “wordfence-waf.php” itself will include the original file.

Viewing 1 replies (of 1 total)
  • The topic ‘Wordfence Web Application Firewall’ is closed to new replies.