Quantcast
Channel: BulletProof Security Forum » All Posts
Viewing all articles
Browse latest Browse all 12486

Reply To: Security Log Event Codes

$
0
0

I am not sure if wp-admin file needs to be whitelisted in the Skip/Bypass rule or a Query String needs to be whitelisted. Please advise. Most of the other items in the log are listed as,

[400 GET Bad Request: January 11, 2015 6:09 pm]
Event Code: The request could not be understood by the server due to malformed syntax.
Solution: N/A - Malformed Request - Not an Attack
[403 GET / HEAD Request: January 13, 2015 11:55 pm]
Event Code: WPADMIN-SBR
Solution: http://forum.ait-pro.com/forums/topic/security-log-event-codes/
REMOTE_ADDR: 50.160.240.226
Host Name: c-50-160-240-226.hsd1.ga.comcast.net
SERVER_PROTOCOL: HTTP/1.1
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http://www.mydomain.com/wp-admin/
REQUEST_URI: /wp-admin/admin-ajax.php?action=gad_fill_dp&cookie=currency%3DUSD%3B%20language%3Den%3B%20_ga%3DGA1.2.1995448560.1420901558%3B%20__utma%3D41600436.1995448560.1420901558.1421170385.1421176663.6%3B%20__utmz%3D41600436.1421157456.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B%20PHPSESSID%3D74688fa71d9720a58a3620533eb488e1%3B%20__utmc%3D41600436%3B%20wordpress_test_cookie%3DWP%2BCookie%2Bcheck%3B%20wp-settings-9%3Deditor%253Dtinymce%2526hidetb%253D1%2526libraryContent%253Dbrowse%2526align%253Dcenter%2526imgsize%253Dmedium%2526ed_size%253D426%2526wplink%253D0%2526advImgDetails%253Dshow%2526urlbutton%253Dnone%3B%20wp-settings-time-9%3D1421169433&rndval=1421193353950
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 5.1; rv:34.0) Gecko/20100101 Firefox/34.0

Viewing all articles
Browse latest Browse all 12486

Trending Articles