Wordpress autoprotect is driving me crazy

Hi,

On several sites, I ran into trouble due to the autoprotect function.
I want to use it, but I can't find a kind of manual on how to configure it.

---

Is there a link available that I can't find? Already tried to search the forum, but couldn't find anything useful.

 

Well, now I using a site and want to upload a image.

Code (Text):

{ allow 127.0.0.1; deny all; }

Code (Text):

location ~* ^/wp-content/uploads/wpseo-redirects/ { allow 127.0.0.1; deny all; }

Should I add my own IP to prevent this issue ? Because it give me trouble inside the wp-admin

Code (Text):

location ~* ^/wp-content/uploads/wpseo-redirects/ { allow 127.0.0.1; allow xxx.xxx.xxx.xxx; deny all; }

should resolve it ?

 

It does not accept uploads

Well, the plugin is the WPML Multilingual CMS for developers and agencies with lifetime updates and unlimited domains. They don't sell it anymore in this form and when I bought it was very expensive.

It has nothing to do with the autoprotect as far as I can see. I even disabled it to be sure about it. It creates an upload dir called flags and has 755. I want to upload the beautiful flag but it simply won't allow me to do so. I also manually uploaded all the flags that I need but the result keeps the same.

After pressing SAVE the page does not load completely but hangs at 50%. On my other hosting panel it does not give any problem and saves all the flags that I need. As example you can see it here that it works normaly fine.

Don't take it badly, but many times when posting your answer in the post that has several links, and these links have new links to other solutions and so on. Well, at the end I have many pages open and can't find the correct answer. It's a kind of confusing. But again, don't take it bad.

I just want to resolve this issue. Already had so many issues, my theme does not allow to use the wp-cli because it wipes all theme settings and I realy like Centmin Mod, hee, I'm still here

 

@eva2000 Sorry about my comments about the links. I know that they are useful, but it's my mistake or better said my failure because of the hours I spent on my different work projects. I work 24/7 and sometimes, at least when my mind allows it I work 36 hours non-stop. My wife tells me that my average is around 21/7 a week so again, my excuse if I offended you. Sometimes I really need some rest but I simply ignore the signals that my body gives that it's time to stop working.

Well, gonna calm down a bit and try to resolve case per case. I am involved in many projects at the same time.

Anyhow, I gonna fix the time you spend with your great work as a donation when I'm done setting up this new part of my business. We all work to make a living.

Final conclusion: It was not Wordpress autoprotect is driving me crazy but my stupid mind. Case closed, learned a lesson. Never to old to learn something new.

 

Well, this issue is still not resolved. I know it's not the autoprotect but I have set WordPress to into debugging

Any Ideas ?

 

Well, permission are correct and the suggestion to add

Code (Text):

  location ~ ^/wp-content/plugins/sitepress-multilingual-cms/(.+/)?(.+)\.(css|js)$ { allow all; }
  location ~ ^/wp-content/plugins/sitepress-multilingual-cms/(.+/)?(.+)\.(png|gif)$ { allow all; }
  location ~* /wp-content/plugins/sitepress-multilingual-cms/.*\.php$ {
   include /usr/local/nginx/conf/php.conf;
   allow 127.0.0.1;
   deny all;
  }

Did not resolve it. Struggling several week with this and until now I couldn't resolve it.

To bad, because on other servers I don't have this problem, see images below

And the other sites that are not on CMM

 

Well, placed it as the last one after all the defaults, and already disabled the autoprotect for testing as mentioned in an earlier post.

Just a tail of the file to see where I placed the exception.

Code:

# Whitelist Exception for https://wordpress.org/plugins/better-wp-security/
location ~ ^/wp-content/plugins/better-wp-security/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/${vhostname}/wpsecure_${vhostname}.conf
  #include /usr/local/nginx/conf/wpincludes/${vhostname}/wpwhitelist_common.conf;
}

# Whitelist Exception for http://wlmsocial.com/
location ~ ^/wp-content/plugins/wlm-social/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/${vhostname}/wpsecure_${vhostname}.conf
  #include /usr/local/nginx/conf/wpincludes/${vhostname}/wpwhitelist_common.conf;
}

# Whitelist Exception for mediagrid timthumb
location ~ ^/wp-content/plugins/media-grid/classes/ {
  include /usr/local/nginx/conf/php.conf;
  include /usr/local/nginx/conf/staticfiles.conf;
  # below include file needs to be manually created at that path and to be uncommented
  # by removing the hash # in front of below line to take effect. This wpwhitelist_common.conf
  # allows you to add commonly shared settings to all wp plugin location matches which
  # whitelist php processing access at /usr/local/nginx/conf/wpincludes/${vhostname}/wpsecure_${vhostname}.conf
  #include /usr/local/nginx/conf/wpincludes/${vhostname}/wpwhitelist_common.conf;
}

# Whitelist Exception for sitepress-multilingual-cms
  location ~ ^/wp-content/plugins/sitepress-multilingual-cms/(.+/)?(.+)\.(css|js)$ { allow all; }
  location ~ ^/wp-content/plugins/sitepress-multilingual-cms/(.+/)?(.+)\.(png|gif)$ { allow all; }
  location ~* /wp-content/plugins/sitepress-multilingual-cms/menu/.*\.php$ {
    include /usr/local/nginx/conf/php.conf;
    allow 127.0.0.1;
    deny all;
  }

# Block PHP files in content directory.
location ~* /wp-content/.*\.php$ {
  deny all;
}

# Block PHP files in includes directory.
location ~* /wp-includes/.*\.php$ {
  deny all;
}

# Block PHP files in uploads, content, and includes directory.
location ~* /(?:uploads|files|wp-content|wp-includes)/.*\.php$ {
  deny all;
}

# Make sure files with the following extensions do not get loaded by nginx because nginx would display the source code, and these files can contain PASSWORDS!
location ~* \.(engine|inc|info|install|make|module|profile|test|po|sh|.*sql|theme|tpl(\.php)?|xtmpl)$|^(\..*|Entries.*|Repository|Root|Tag|Template)$|\.php_
{
return 444;
}

location ~* \.(tpl)$
{
  deny all;
}

#nocgi
location ~* \.(pl|cgi|py|sh|lua)$ {
return 444;
}

#disallow
location ~* (w00tw00t) {
return 444;
}

location ~* /(\.|wp-config\.php|wp-config\.txt|changelog\.txt|readme\.txt|readme\.html|license\.txt) { deny all; }
location ~* /(wp-content)/(.*?)\.(zip|gz|tar|bzip2|7z|txt)$ { deny all; }

 

Code (Text):

# Whitelist Exception for sitepress-multilingual-cms
  location ~ ^/wp-content/plugins/sitepress-multilingual-cms/(.+/)?(.+)\.(css|js)$ { allow all; }
  location ~ ^/wp-content/plugins/sitepress-multilingual-cms/(.+/)?(.+)\.(png|gif)$ { allow all; }
  location ~* /wp-content/plugins/sitepress-multilingual-cms/menu/.*\.php$ {
    include /usr/local/nginx/conf/php.conf;
#    allow 127.0.0.1;
#    deny all;
  }

Did not resolve the issue.

Still got this error:

 

Code (Text):

php --ri fileinfo
Extension 'fileinfo' not present.

Strange, I started this Droplet with a 4GB when using the installer for CMM. (ref: https://community.centminmod.com/th...01-install-time-stats.8866/page-15#post-72213 )
Normally when things go bad, I start a new Droplet from a snapshot and select the smallest one to save on SSD space, just to keep it flexible to go back when upgrading to more memory or different CPU. But that can't be a reason that it was missing the extension

But resolved it by adding

Code (Text):

PHPFINFO='y'                    # Force to install phpinfo on systems with <1GB memory

in the /etc/centminmod/custom_config.inc and recompile PHP. Was already confused why it took so long before this due to the compile time . Now it the compile time dropped a lot and yeah, fileinfo works

Code (Text):

php --ri fileinfo                   
fileinfo
fileinfo support => enabled
libmagic => 533

Memory

Code (Text):

free -ml
              total        used        free      shared  buff/cache   available
Mem:           7821        1719        3014          43        3087        5683
Low:           7821        4806        3014
High:             0           0           0
Swap:          1023           0        1023

But the system is just up and running for 1 hour so the High won't show up.

So A little work to do @eva2000 FIX: check/add for fileinfo on recompile PHP if memory changed.

Well, the recompile of PHP with fileinfo fixed the issue with the flags.


But still got a some of errors. Did not make the change to the tmp dir, the fatal error disappeared.

Code:

Notice: Trying to get property 'flag' of non-object in /home/nginx/domains/${vhostname}/public/wp-content/plugins/sitepress-multilingual-cms/menu/edit-languages.php on line 400

Notice: Trying to get property 'from_template' of non-object in /home/nginx/domains/${vhostname}/public/wp-content/plugins/sitepress-multilingual-cms/menu/edit-languages.php on line 401

The contect of line 400 and 401 are

PHP:

        function get_active_languages() {
                global $sitepress, $wpdb;
                $this->active_languages = $sitepress->get_active_languages(true);       

                foreach ($this->active_languages as $lang) {
                        foreach ($this->active_languages as $lang_translation) {
                                $this->active_languages[$lang['code']]['translation'][$lang_translation['id']] = $sitepress->get_display_language_name($lang['code'], $lang_translation['code']);
                        }
                        $flag = $sitepress->get_flag($lang['code']);
                        $this->active_languages[$lang['code']]['flag'] = $flag->flag;
                        $this->active_languages[$lang['code']]['from_template'] = $flag->from_template;
                        $this->active_languages[$lang['code']]['default_locale'] = $wpdb->get_var( $wpdb->prepare( "SELECT default_locale FROM {$wpdb->prefix}icl_languages WHERE code=%s", $lan$
            $this->active_languages[$lang['code']]['encode_url'] = $lang['encode_url'];
            $this->active_languages[$lang['code']]['tag'] = $lang['tag'];
                }


        }

And the lines 400 and 401 are

PHP:

                        $this->active_languages[$lang['code']]['flag'] = $flag->flag;
                        $this->active_languages[$lang['code']]['from_template'] = $flag->from_template;

 

Done> https://wpml.org/forums/topic/unable-to-upload-custom-flag-fatal-error/#post-3740369