Suman M.

[Suman M.]

Hi, IDS detects the request as harmful or probable harmful depending upon the nature of the request, parameters associated, keywords, etc. Even though the requests are listed in the log it doesn’t mean that they are blocked (they might be logged as probable harmful). Is any request blocked in your site?

And regarding the screenshots above, is it that your site is broken after applying HMWP settings? Please generate debug report from HMWP start tab and post it here as private reply.

[Suman M.]

This reply has been marked as private.

[Suman M.]

This reply has been marked as private.

[Suman M.]

Hi, did you also rename wp-admin path name? Please clear all the instances of HMWP from database and do fresh install of HMWP.
Do these:

1) In “wp_options” table in your database, delete the rows with following “option_name”. Please backup your database first.
– hide_my_wp
– hide_my_wp_undo
– hmwp_ids_installed
– hmw_all_plugins
– external_updates-hide_my_wp
– hmwp_spam_counter
– hmwp_temp_admin_path

2) comment out or remove following line from wp-config.php (if you have added it there previously)
define(“ADMIN_COOKIE_PATH”, “/NEW_WPADMIN_PATH_NAME”);

And Why (after I remove plugin ) can still login with my old custom login path? /wp-login.php?logowanie=1973
>> That secret key will make sense only if HMWP is active. Without HMWP any secret key will work as it won’t matter what you append as query string to wp-login.php like /wp-login.php?anyname=anyname

[Suman M.]

It seems like you have already configured HMWP plugin in your site. Do let us know if there’s any issue.

[Suman M.]

Hi, you have added HMWP rules within location{} block in nginx config file. You should add the rules within server{} block. So please add HMWP rules just before closing braces } of server block. Then restart Nginx server. Let us know!

[Suman M.]

This reply has been marked as private.

[Suman M.]

This reply has been marked as private.

[Suman M.]

This reply has been marked as private.

[Suman M.]

As it’s nginx server we cannot change any settings in HMWP as the rules will also needed to be updated in nginx config file.
Can you please let us know the server login details so that we can look further into the issue? Thanks!

[Suman M.]

This reply has been marked as private.

[Suman M.]

This reply has been marked as private.

[Suman M.]

Hi, HMWP IDS detects malicious requests coming to your site and notify you about it. But all these requests might not be harmful and you need not worry as HMWP IDS will take care of this and will block the malicious requests if Impact level is more than 20 (default value specified in HMWP IDS). You can stop receiving emails regarding this by setting “Notification Threshold” option to 0 in IDS Firewall tab.

Note:
If in case, valid request is also listed as intrusion then hover over that request name and click on Exclude link to add it to exception list.
And if you don’t want IDS feature the you can disable it from IDS Firewall tab.

[Suman M.]

Hi, Did you also restart Nginx?
Please let us know the server’s login details so that we can check it further and fix the issue for you. Thanks!

[Suman M.]

This reply has been marked as private.

[Author]

Posts