serenoidel
Forum Replies Created
-
For incoming packets, when the port forwarding is used on the router (also Linux based router), the source IP is not changed when passing through. Only destination is changed when redirected to the R-PI. I watch my traffic on the Raspberry PI. IP headers are unchanged, ports also are unchanged. This is incoming traffic, not outgoing.
Cerber correctly discovers attacks and source IPs of the attackers but never blocks their IPs.
Refering this link: https://wpcerber.com/wordpress-ip-address-detection/
What IP address are you talking about?1. Local IP of the machine the Cerber is installed on?
2. Public IP of the network gateway (WAN of the router)?
3. ?…Cerber works properly only when the machine with Cerber installed has public IP on it’s primary/default LAN interface.
——————
Update.
I have found problems in the “Server Info section”.No such thing as [HTTP_X_REAL_IP] => ….
Instead there is my another public IP of computer I logged in to the wp-admin.[SSL_TLS_SNI] => is correct
[HTTP_HOST] => is correct
[SERVER_NAME] => is correct
[SERVER_ADDR] => 192.168… correct internal IP of the raspberry PI
[SERVER_PORT] => 443 correct
[REMOTE_ADDR] => my PC which is connected to the wp-admin (not te real public IP)- This reply was modified 7 years ago by serenoidel.
- This reply was modified 7 years ago by serenoidel.
- This reply was modified 7 years ago by serenoidel.
- This reply was modified 7 years ago by serenoidel.
Forum: Plugins
In reply to: [WP Cerber Security, Anti-spam & Malware Scan] Get rid of cookiesThank you very very VERY much 🙂
Now my website is free of cookies, google fonts and other intimidating stuff 🙂Cookies are good for the purpose they were created for.
In most cases they are not for legit purposes but for pinpointing location, interests, opinions, political things, spying and so on.
Cookies used for logging, basket, purchase and so on are absolutely legitimate but should be immediately expired.Thank you very much for your help 🙂
Forum: Plugins
In reply to: [WP Cerber Security, Anti-spam & Malware Scan] Get rid of cookiesHalo developers?
Please tell me why do you use cookies? Is it possible to disable them for normal visitors of the website?
This behavior looks bad for visitors and I don’t have explanation….It looks like Cerber doesn’t understand the situation of being behind the NAT in my case.
In both setups all work flawlessly even Letsencrypt and postfix/dovecot.This does NOT work:
—>DSLline—>router_publicIP_to_NAT—>192.168.10.10 (Raspberry PI with WordPress)This DOES work:
LAN—>Ethernet_PPPoE_publicIP_on_Raspberry_PI (Raspberry PI with WordPress)- This reply was modified 7 years ago by serenoidel.
The same happens when the link to our website is published on Facebook. When a user is logged on Facebook and clicks the link to our website, Facebook adds /?fbclid=akadkagakagkahg….. This is their workaround of GDPR. I have to strip all tracking in Apache by ModRewrite engine.
Facebook uses fbclid to track logged users without third party cookies which are blocked by default in some browsers.
In my opinion WP Cerber does it right. This thing fbclid= must be treated as malicious behavior.Clear cookies and in general clear browser cache.
It is hard to tell what happened in your case but in my case I need to disable WP Cerber before I create backup and enable Cerber again.
When I need to recover from a backup I am sure that the WP Cerber will not block the last phase of recovery.
Sometimes messages can be misleading…