Support

My client had a service (Detectify) that checks/tests security on their site. They want it to run. I whitelisted the IP addresses used by these services, but the IP still gets marked for a CSRF Shield violation, and as a result the IP gets put into the auto-blocked list.

Is there a way to white list an IP address so that it never gets blocked as a violater? .. yet keeing the checks and rules of Admin Tools in place for all other IP addresses?

I'd like to quality my initial request... We do not want Admin Tools to remove the protection for CSRF Shield against the testing service, but we do want a way for this testing service not to be moved to the auto-banned list. Is this possible through configuration settings?

Thanks. I had tried that as indeed this service uses three fixed IP addresses. However, the client showed me an email she received that listed one of these three as being blocked. I cannot confirm whether or not the IP address was blocked, but the client did get the email that is sent when an IP is blocked. I can speculate that the white listing is working and prevents an IP address from being blocked, but the email is still generated for white-listed IP addresses. Not sure, but it is my best guess at this time.

Anyway, I think at this time the client is content with this issue. She has set up an email rule to delete any emails coming from Admin Tools that list any of these three IP addresses.

This ticket has been automatically closed. All tickets which have been inactive for a long time are automatically closed. If you believe that this ticket was closed in error, please contact us.