Elxis CMS Forum

Support => Security => Topic started by: seadhna on September 26, 2018, 16:44:38

Title: I keep getting banned from own site: SEC-DEFG-0025
Post by: seadhna on September 26, 2018, 16:44:38
Hi, I keep getting banned from own site every few minutes, just browsing and refreshing. In defender_ban, the code is: SEC-DEFG-0025 for my IP.
Is there any way to know why this is happening? How to prevent it? Can I whitelist my own IP?
Title: Re: I keep getting banned from own site: SEC-DEFG-0025
Post by: webgift on September 27, 2018, 11:22:39
Have you tried to use another browser? A rule is triggered that's why you've banned.
Title: Re: I keep getting banned from own site: SEC-DEFG-0025
Post by: seadhna on September 27, 2018, 14:47:20
Yes, this is happening in both Chrome and Firefox (Windows 10).
What does the code mean?
Title: Re: I keep getting banned from own site: SEC-DEFG-0025
Post by: webgift on September 27, 2018, 15:24:36
Do you use the same add-ons for both of these browsers?
Please send me back-end access though PM in order to check this out. I have under
consideration some other factors as well however i must see this.

Title: Re: I keep getting banned from own site: SEC-DEFG-0025
Post by: seadhna on September 27, 2018, 16:42:22
I figured it out! It was happening on every third page-load of a multi-lingual version of a page. Quotation marks in the German version of articles were somehow causing me to continuously get banned. I've had similar problems before with this issue. When I removed the quotation marks, the problem has stopped. Strange that it causes users on the frontend to get banned.
Title: Re: I keep getting banned from own site: SEC-DEFG-0025
Post by: seadhna on September 27, 2018, 16:43:45
Here is my previous issues and the fixes in place: http://forum.elxis.org/index.php?topic=8659.msg55944
Title: Re: I keep getting banned from own site: SEC-DEFG-0025
Post by: datahell on September 27, 2018, 20:14:05
Quotes is not the problem. There is something else in your html which is not good. Maybe bad links which defender treats as XSS attack. Example such link:

<a href="http://www.example.com/something/?x=http://www.....">bad link</a>

For more help tell me your exact Elxis version and the full error message you get (before banned).