7thcircle
Forum Replies Created
-
I understand. Happy to provide any details you need on my setup. If it matters, I send all my email through Google servers from my site.
The interface is in English, the folder and files are there. This is happening across 15 sites that are all standard installs on Hostgator shared hosting. Each has its own cPanel
WordPress Version: 4.8
PHP Version: 7.0.18
PHP Memory Limit: 268435456
MySQL Version: 5.5.51-38.2Plugins vary per site, but I do have a site I can let you test on.
I am running 1.8.7 and my site is en-US and I am still getting the abnormal subject on emails
Emailsubject.post_update
Emailsubject.success_login
Emailsubject.failed_loginForum: Plugins
In reply to: [BulletProof Security] POST Request Attack Protection issuesMakes sense. Looks like I just needed to read the code a little better and see that. I just assumed it took all POST requests and filtered them.
Forum: Plugins
In reply to: [BulletProof Security] POST Request Attack Protection issuesYes, they are non existent files, but as I read the code (and correct me if I am misreading it) it is supposed to take ALL post requests and only allow the whitelisted ones.
TIME: July 7th 2016, 07:03pm
*404: https://www.example.com/cron.php
SITE: https://www.example.com/
THEME: Modularity
REFERRER: undefined
QUERY STRING:
REMOTE ADDRESS: 202.150.209.178
REMOTE IDENTITY: undefined
REQUEST METHOD: POST
SERVER PROTOCOL: HTTP/1.1
USER AGENT: Mozilla/5.0 (Windows NT 6.0; rv:16.0) Gecko/20130722 Firefox/16.0Message sent.
No plugins running when those errors hit. Below is more error logs. It looks like it is the sitemap generation.
[05-Jul-2016 01:31:29 UTC] PHP Fatal error: Out of memory (allocated 360710144) (tried to allocate 524288 bytes) in /home/username/public_html/genealogy/wp-content/plugins/all-in-one-seo-pack/modules/aioseop_sitemap.php on line 2505
[05-Jul-2016 01:31:45 UTC] PHP Fatal error: Out of memory (allocated 361234432) (tried to allocate 72 bytes) in /home/username/public_html/genealogy/wp-includes/post.php on line 1982My site is LARGE. 37,460 Pages
This site is already set to 256MB in the wp-config.
[05-Jul-2016 00:19:14 UTC] PHP Fatal error: Allowed memory size of 268435456 bytes exhausted (tried to allocate 85 bytes) in /home/username/public_html/genealogy/wp-includes/class-wp-post.php on line 240
[05-Jul-2016 00:19:32 UTC] PHP Fatal error: Allowed memory size of 268435456 bytes exhausted (tried to allocate 18 bytes) in /home/username/public_html/genealogy/wp-includes/post.php on line 1982
[05-Jul-2016 00:19:36 UTC] PHP Fatal error: Out of memory (allocated 361234432) (tried to allocate 32 bytes) in /home/username/public_html/genealogy/wp-includes/post.php on line 1982
[05-Jul-2016 00:19:46 UTC] PHP Fatal error: Out of memory (allocated 361234432) (tried to allocate 32 bytes) in /home/username/public_html/genealogy/wp-includes/post.php on line 1982
[05-Jul-2016 00:19:52 UTC] PHP Fatal error: Out of memory (allocated 361234432) (tried to allocate 87 bytes) in /home/username/public_html/genealogy/wp-includes/class-wp-post.php on line 240I already tried just this one and no luck with Twenty Twelve theme.
Here is the resolution…. I created a plugin to strip the offending information from my source. If anyone wants it, let me know. It is small and free.
It appears to have corrected itself with the recent update, but 1 site that has been acting up is https://sandbox.7thcircledesigns.com
Forum: Plugins
In reply to: [Fast Secure Contact Form] Showing plugin version in html sourceThat is correct. It is easy to update for one site, but since I use and maintain numerous sites I was hoping to have an option in the plugin or even better to just remove it completely.
This isn’t a security flaw. Many other plugins, including WordPress core, do the same
I remove that with code.
Security by obscurity isn’t security.
Maybe not, but every little bit helps.
He’s referring to providing support to users and debugging their sites
Ask them for the version number instead of just displaying it.
Keep your plugins up to date.
Obviously that is best practice, and most of us do. There are many sites that never get updated and the extra info delivered to the script kiddies makes it easier for them to compromise a site.
I’ve done it, works fine. Biggest issue is to know the names of the fields you have and what you are converting them to.
I send mine to MailChimp. I actually use a plugin now because of some extra pieces I wanted, but its not necessary to use the plugin.