WP-Admin access
-
I have SeaSP set in Report Only and Error Correction on. I am also using WP Cerber for security and have changed the login URL.
In the Cerber logs – I see repeated occurrences of the following. These seem to be coming from genuine users who have accessed pages on our site :
/wp-admin/admin-ajax.php?nonce=xxxxxx – the nonce value is the same for every site and of course not xxxxxx
The Form Field action = Blue_Triangle_Automated_CSP_Free_Send_CSP.
The reply to these is always a 403.
SeaSP appears to be collecting CSP Violation data as this shows up ok.
Is this behaviour to be expected ??
Thanks.
Viewing 3 replies - 1 through 3 (of 3 total)
Viewing 3 replies - 1 through 3 (of 3 total)
- The topic ‘WP-Admin access’ is closed to new replies.