Suman M.

[Suman M.]

Hi, thanks for contacting us. Can you please let us know the following?
– message you get when you enter purchase code in new website
– your HMWP purchase code
– your Envato username
– old website url
– new website url

[Suman M.]

I don’t see the error message in the site. It’s being logged in debug file only? I’ve assigned this ticket to our dev team so that they can look further into it. Thanks!

[Suman M.]

Hi, it might be that the secret login leys got leaked? Please try changing the secret keys and see if it happens again. Thanks!

[Suman M.]

I’ve configured HMWP plugin in your site and default WP paths are being renamed/hidden now. Please check the site’s page source. But the option “hide wp-admin” could not be activated in your site. If this option is enabled then it’s causing some conflict and won’t be able to access backend. Please check the site and let us know.

[Suman M.]

If you add new theme or plugin, then you’ll need to update HMWP rules in htaccess file manually (as it is WP multisite).
Go to Hiding tab, click on “manual configuration” button, copy HMWP rules and add it in htaccess file replacing the previous HMWP rules there.

[Suman M.]

This reply has been marked as private.

[Suman M.]

Hi, I tried accessing https://www.3dlabs.io/my-account and I could access it without any issue – https://www.screencast.com/t/N4Bp65oq
(also I could see that HMWP is enabled there). Can you please check?

[Suman M.]

Thanks! I’ve assigned this ticket to our dev. team so that they can look further into it. I’ll get back to you on this.

[Suman M.]

Alright! So is there any issue I need to check on right now? Let me know.

[Suman M.]

Hi, please enter your CDN URL in “CDN Path” field in HMWP settings. It’s recommended to enable “combine css files” and “combine js files” options, and disable “Optimize CSS delivery” and “Load JavaScript deferred” options for much compatibility with HMWP. Please check and let us know.

[Suman M.]

Do you have revolution slider plugin installed in your site? Can you please generate debug report from HMWP start tab and post it here as private reply? Thanks!

[Suman M.]

This reply has been marked as private.

[Suman M.]

This reply has been marked as private.

[Suman M.]

This reply has been marked as private.

[Suman M.]

Hi, thanks for reaching out to us. HMWP IDS detects malicious requests coming to your site and notify you about it. But all these requests might not be harmful and you need not worry as HMWP IDS will take care of this and will block the malicious requests if Impact level is more than 20 (default value specified in HMWP IDS). You can stop receiving emails regarding this by setting “Notification Threshold” option to 0 in IDS Firewall tab.

Regarding the various tags like xss, csrf, id, sqli, lfi, etc. it depends upon the type of requests.

Note: If in case, valid request is also listed as intrusion then hover over that request name and click on Exclude link to add it to exception list.

[Author]

Posts