Skip to main content

Turning Off the Wordpress Security Nannies - ImmunifyAV / WP Toolkit

Comments

3 comments

  • cPRex Jurassic Moderator

    Hey there!  Could you provide an example notification subject line that you receive about this?  could this be the https://blog.imunify360.com/waf-rules-auto-configurator for WordPress? 

    0
  • consultant

    That link you provided I believe is documenting a feature in the paid version of Immunify360.  I'm talking about this notification that comes from ImmunifyAV which is included free in Cpanel.  Note that I believe WHM labels it as Immunify360 instead of ImmunifyAV whether you are using the free or paid subscription which is a little confusing but on the Immunify control panel you are of course prompt to pay for a subscription for Immunify360 verifying you are on the free version.

    The manage subscriptions link is merely the ability to control ALL notifications (it's not segmented by system level or Wordpress)  It's basically on/off and where they go to.

    I note that the path in the email isn't the full path of the plugin.  I was thinking a workaround we be to disable the public_html folder of all the Wordpress sites making them excluded in the Immunify settings.  Kind of cumbersome but might just work.  Securi plugin already scans all Wordpress folders. It's actually more sensitive than Immunify as it picks up system file modifications and new unknown files not just malware.

    Dear Administrator,

    We've detected vulnerable WordPress versions in your system:

    • woocommerce version 9.1.2 that is located at /home/elemental/public_html is outdated
      The recommended for use version of this software is 9.1.4

    Quick Steps to Secure:

    1. Alert WordPress admin(s) to update ASAP.
    2. Upgrade to Imunify360 for broader security coverage.

    Questions? Our team is here to help.

    Stay Safe,
    Imunify360 Security Team

    0
  • cPRex Jurassic Moderator

    Thanks for the additional details.  It doesn't look like that is an option as you can only disable all of the notifications.  The Imunify team directed me to this documentation page:

    https://blog.imunify360.com/how-to-manage-imunify-security-notifications

    Could you submit a feature request for more granular notifications there at features.cpanel.net, as I also work closely with that area?

     

    0

Please sign in to leave a comment.