-
Posts
-
I receive the following error:
“Saving didnt work!
Please reload the page and try again”
when attempting to save changes in “Enfold Theme Options”.
I’d been using Avisio up till this point. I just installed Enfold, is there a solution?Thanks!
Hi dlvennie!
Can you please try de-activating all active plugins and check if that helps?
Best regards,
YigitHi!
please refer to this post: https://kriesi.at/support/topic/saving-didnt-work-please-reload-the-page-and-try-again-4/#post-132122
Best regards,
AndyHi!
Hmm, your getting a 404 for the admin ajax script. I found this thread which may help, https://wordpress.org/support/topic/dont-have-permission-admin-ajaxphp-add-new-category.
Try deleting your .htaccess file and then update your permalinks in Dashboard > Settings > Permalinks. Also try contacting your hosting provider to see if mod_security is properly setup.
Best regards,
ElliottI’ve opened my .htaccess file in /wp-admin/ and the only text in the file reads:
<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
</IfModule>I’ve also updated permalinks, and added “define(‘WP_MEMORY_LIMIT’, ‘256M’);” to wp-config.php in the root directory. Have I edited the wrong .htaccess file, is there another location where wp-config.php is stored. I’m not sure what I’m missing, but the error persists.
Hey!
Did you try deleting it as suggested and then refresh your permalinks? Have you contacted your hosting provider regarding the mod_security rules?
Cheers!
ElliottI have deleted all .htaccess files on the server. As for contacting the host, I recently contacted about my IP address being blocked frequently, and the sent the reply I’ve pasted below. Is this relevant to this problem as well?
ModSecurity (also known as “modsec”) has proven itself useful in a variety of situations, and again this is true in assisting with WordPress brute force attempts resulting in a Denial of Service (DoS) attack. While a number of WordPress plugins exist to prevent such attacks, custom modsec rules can prevent such attacks for all WordPress installations on a server. Modsec immediately filters incoming HTTP requests, which assists against taxing server resources.
These rules will block access for the offending IP address for 5 minutes upon 5 failed login attempts over a 3 minute duration. If you would like to disable mod_security, you can do it as your own risk. Here is some further information and a full explanation for your reference:
If this does not working for you, we can add a domain in to the allow list of ModSecurity
Hey!
Please contact your host once again regarding the mod_security rules. As you can see in the link Elliott posted, it seems like your host can fix this issue for you
“a lot of wp users have reported this. a possible solution is in this thread:
http://wordpress.org/support/topic/117993?replies=36
but if your server is configured so that mod-security cannot be overruled this will not work.
have you contacted your host yet?”Regards,
YigitShould I request they turn off mod_security entirely for Enfold to function, or are there specific parameters they need to change?
Mod Security has been blocking my IP Address, triggered by a false positive, which they say can be rectified by disabling the specific rule blocking me. That’s a separate matter from the 404 for the admin ajax script I’d assume. Shall I ask them to disable it entirely?
Hi!
Ask if they can whitelist this file, /wp-admin/admin-ajax.php.
I found these topics which may help.
https://wordpress.org/support/topic/disable-mod-security
https://wordpress.org/support/topic/mod_security-for-wordpressRegards,
ElliottThe problem appears to have been resolved, however my host was unable to whitelist an individual file, and they’ve disabled Mod Security entirely. Is this recommended, and/or are there other security measures (or plugins) recommended for use with this theme now that Mod Security is disabled? I believe, if I knew what rule was triggering the issue I’m having with saving in theme options, they could turn off the rule, but I wouldn’t know how to find it ( I didn’t even recognize the 404 for the admin ajax script.).
Hey!
It’s not a theme issue but an issue with your hosting provider, mod security, and WordPress. I think whitelisting the file listed would fix it or disabling mod security entirely which is what your hosting provider did it sounds like.
Regards,
ElliottRight, I recognized it’s an issue with Mod Security. Since they’re unable to whitelist a specific file (or so they’ve stated), I was only wondering if there’s an alternative recommended to having Mod Security now that it’s disabled. Either way, I can save again, and finally get to work on re-branding.
Thanks for the assistance!
Hey!
You’ll need to contact your hosting provider about that. Or you can try the Akismet plugin, http://akismet.com/.
Cheers!
Elliott
- You must be logged in to reply to this topic.