Hi,
i need a little clarification please.
i have frequent jschallenge on WAF generated from origin server.
service is bot fight mode , path is /wp-admin/admin-ajax.php , query string is ?action=as_async_request_queue_runner&nonce=4e34488b94
it is safe to whitelist and allow origin IP ?
or it is better to do somethig more specific?
i am not expert in security and i appraciate any help
thanks
Since it’s related to the WordPress, I’d suggest you to whitelist your origin host / server / hosting IP address by navigating to the Security → WAF → Tools → IP Access Rules with the action “allow” for your Website and try again.
It knows to happen due to the WordPress using HTTP/1.0 and empty user-agent, therefore while executing WP-Cron or some other related JSON/REST API request via plugin.
This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.