Unexpected and weird Defender lock outs

The admin of one of the sites on multisite reported that he’s getting banned from visiting the site (front end) by Defender. Further investigation showed that it happens when visiting the site via short URL in browser incognito mode: http://www.****4kidz.com/418

It is not easy to replicate as it doesn’t happen each time. There’s a lot of “short URLs” of this type on the multisite and they seem to be working fine except this one. However, there are hundreds of them so not all were checked. What can be a cause of this?

  • Katya Tsihotska
    • Support & QA

    Hi again Micha :slight_smile:

    Hope you’re doing fine!

    I’ve checked this issue and I found that even if 404 lockout is disabled now I’m getting lockout screen when I’m attempting to visit the page mentioned in your ticket. Also, I’ve noted that it happens only when I’m loading this page with http://, but when I’m trying with https://, it works fine.

    I’m going to need to ping our SLS team (code experts) and get their valuable feedback on this. Since this is a bit more of an advanced query, it may take a little bit longer to get a reply back about this, but one of us will post back with feedback as soon as possible.

    We appreciate your patience.

    KInd regards,

    Katya

  • Ivan
    • Developer

    Hi Micha !

    It happens because W3 total cache cached this page with Defender locked content. You can check it – when you see this issue again – you can add any Get parameter to current URL (for instance, your_domain/california-torrance/?test=test in this case ) – and you will see the unlocked content of this page. Or you can just deactivate W3 total cache and check it.

    Best,

    Ivan.

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.