Kevin Pirnie
Forum Replies Created
-
Forum: Reviews
In reply to: [The Cache Purger] Good in theoryBluehost has nothing that is specific to them, yes… it is listed as “Hosting/CDN” to show that it works on any host. But all the plugin would even do for them is clear the cache files from your hosting’s file system… if Bluehost can even handle something as simple as that…
I’m wondering what “CDN Stuff” you removed from the plugin, because there are only settings for Cloudflare, Sucuri and Fastly… and nothing related in settings for Bluehost… and those 3 work just fine…
But, thanks for the raving review.. instead of requesting support.
SMH
Forum: Plugins
In reply to: [Security Header Generator] PHP WarningsI’m sorry Malae, but this is not something that is going to be prioritized. While I understand your position, the warnings; in no way shape or form; impede the functionality of your site nor the plugin.
I can suggest to you to do the any of the following so you will not see the Warnings anymore.
- Turn off WP-DEBUG by adding the following to your wp-config.php:
define( 'WP_DEBUG', false ); - Configure those items in the
admin.php?page=wpsh_settings#tab=permissions-policy-headerspage of the plugin. - Deactivate the plugin and keep an eye on the changelogs to see if they have been fixed in future updates.
- This reply was modified 1 month ago by Kevin Pirnie.
Forum: Plugins
In reply to: [Security Header Generator] PHP WarningsI would appreciate your taking a look at this as I am hoping to upgrade to PHP 8.4.
It is lower on the list to correct, since they are not system impeding in any way. They are… in fact… only warnings. You are safe to upgrade to 8.4
Forum: Plugins
In reply to: [Security Header Generator] Can’t edit Font Source fieldSorry about the delay, holiday stuff got in the way.
No worries at all mate, hopefully they were good for ya 🙂
That’s pretty odd… unless there was some REALLL heavy duty caching going on, it should have updated fine. Maybe a real long term transient? Unfortunately, I did not come across that (post update)
I’ll keep an eye out, and keep this open for awhile in case I do happen to run into it… or anyone else does as well.
Forum: Plugins
In reply to: [Security Header Generator] Can’t edit Font Source fieldI think I’ve got it all corrected in my test areas, and my personal site. Before I push the fix, I’d like to know if it starts working for you once you enable WP_DEBUG though. Seems there may be an issue with Node/NPM’s gulp functionality that may not be minizing the javascript properly.
Also… noticed your comment about “reporting”.
CSP doesn’t work that way unfortunately… there is a “report-to” directive, but it isn’t intended to send email reports. Instead it generates a report and sends it to a specified URL endpoint. (I’m adding it in the next version). For more context: https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Content-Security-Policy/report-to
You’d have to develop something to continually monitor your site for valid headers and then email you for violations. Could I do it, sure, but since this plugin is going to remain free, I am not willing to maintain the necessary hardware and maintenance costs to do that. 😉
If I had to guess, the “old plugin” only emailed on structural inconsitencies, and not real violations. Real violations require at least a HEAD request to the site being tested, and then comparing the configured CSP headers against a full recursive scan of the site for the external resources and their types.
- This reply was modified 2 months ago by Kevin Pirnie.
Forum: Plugins
In reply to: [Security Header Generator] Can’t edit Font Source fieldDo you have “Include WordPress Defaults?” on or off? Actually… as a quick test… can you put
define( 'WP_DEBUG', true );
define( 'WP_DEBUG_DISPLAY', false );
define( 'WP_DEBUG_LOG', true );In your wp-config.php and test again?
Forum: Plugins
In reply to: [Security Header Generator] Can’t edit Font Source fieldCan you try a different browser?
Something that you haven’t been to the site in yet preferably… or can you hard clear your caches. (https://clear-my-cache.com/)
I do not have that issue any more, but I did have to clear out my caches
Forum: Plugins
In reply to: [Security Header Generator] Can’t edit Font Source field🙂 @sunb1
Keep me posted how it goes for yaForum: Plugins
In reply to: [Security Header Generator] Can’t edit Font Source fieldJust pushed the fix for this, along with a couple other updates. Wait until it shows then update. You will likely need to clear your browsers caches after updating.
Forum: Plugins
In reply to: [Security Header Generator] Can’t edit Font Source fieldI’ll have a fix for this published soon. Need to check on a few more things.
It ended up being a bit of an update to the functionality that controls the “Include WordPress Defaults”
Forum: Plugins
In reply to: [Security Header Generator] Can’t edit Font Source fieldWelll there’s something you don’t see everyday… https://prnt.sc/Gce906E85hPJ
I added the *.cloudflare.com and hit save and it did indeed disappear from the field as shown… however, if you look at the source… it’s in the value of the field!?
That shouldn’t be happening at all… all “values” should be shown in the text field, per HTML specifications.
I’ll see what I can do, and hopefully have a fix out today
- This reply was modified 2 months ago by Kevin Pirnie.
Forum: Plugins
In reply to: [Security Header Generator] Can’t edit Font Source fieldWhat web browser are you using? I cannot replicate the issue, so it seems like there is something going on with the Javascript of the site likely.
In your browser, open the Developer Tools, and look under ‘Console’.
Forum: Plugins
In reply to: [The Cache Purger] Can’t use settings pageWere you able to perform that diagnosis?
Forum: Plugins
In reply to: [The Cache Purger] Can’t use settings pageWhat I would do is deactivate all plugins other than The Cache Purger. From there, re-activate one at a time to see what is actually causing the issue.
Forum: Plugins
In reply to: [The Cache Purger] Can’t use settings pageI cannot help you unless you reply with what I have asked for. Until then, I am going to close this issue.
- Turn off WP-DEBUG by adding the following to your wp-config.php: