New to the community? Start here

[Defender Pro] Defender false positive on file

Hello all !
I spotted a false positive due to language in Defender.
With the last update, I got alerts on all my websites regarding two file :
– readme
– wp-config-sample

Those files are flagged as modified from the original, because all comments are in French.
This way, it thinks it’s harmful where there is only comments.

Maybe a fix that will either ignore comments (may be dangerous I think) or compare the version to the good language official one ?

Thanks :slight_smile:

Wed, 6 May 2020 8:51:51
More Defender Pro discussions
Defender Pro
  • Adam
    • Support Gorilla

    Hi Guigro

    I hope you’re well today and thank you for reporting it.

    There are two ways to install WordPress in language different than default English. One is to use the default English package and then select language during installation and the other one is to use language-specific/localized installation package.

    The issue happens with that second method usually because in such case, as you already mentioned, some files are different (due to translation) than in default English package and this results in control checksum not validating properly.

    Our developers are already aware of that and are looking for a permanent solution with further releases of the plugin.

    As for now, if you’re sure that these files are flagged only because of language-related content, the workaround would be to mark them to be ignored. Our developers, however, are looking into the issue to solve it with one of future releases.

    Best regards,
    Adam