WordPress Toolkit Plugin Notifications

[MajorLancelot]

We set notifications so that customers could know what is expected of them when it comes to WordPress Toolkit.

This is kinda odd:

Not sure why notification like this is being sent to customers:

Updates are available for the following items:

1. Plugin "Site Kit by Google" on $somedomain.com (https://$somedomain.com). Your version: 1.79.0. Available version: 1.79.1.

The system generated this notice on Friday, July 22, 2022 at 1:36:48 AM UTC.

“WPT::ClientAutoUpdates” notifications are currently configured to have an importance of “Low”. You can change the importance or disable this type of notification in WHM’s Contact Manager at: https://$hostname.domain.com:2087/scripts2/editcontact?event=Application

Shouldn't be going to https://hostname.domain.com:2083/cp...nd/jupiter/wp-toolkit/index.live.php#/plugins

There is simply no reason customers (non- WHM users) should be receiving this and it shouldn't be disabled as it is an important notification.

Could you take another look at this?

 

[DennisMidjord]

I reached out to cPanel about this months ago. This is their replies:

Hello,

Thank you for your patience. I have been checking on a test server, and I believe that the message is being printed incorrectly in the emails. It does not look like cPanel users have the ability to configure notifications, but I'm going to escalate this ticket to level 3 so they can review this and ensure that I haven't missed anything.

The next level three analyst will be with you as soon as possible. Regards,

Hello,

Thank you for your continued patience. I was able to replicate this behavior and have reached out directly to the WordPress Toolkit team concerning the notification behavior. Once we hear back with more information, we will update. I am going to set a follow up for next week, though we usually hear back much quicker than that. Your patience and understanding is greatly appreciated.

Hello,

Thank you for your continued patience. One of our developers has informed the WordPress Toolkit team the exact issues with the notifications and I am trying to see if it has been actioned on or not. This should hopefully be fixed in a future version of WordPress Toolkit.

That was almost 7 months ago.
I have no idea how they haven't just removed the footer from the emails yet.

 

[MajorLancelot]

I reached out to cPanel about this months ago.
That was almost 7 months ago.

I don't think cPanel understands what this means for cPanel users.

When they access 2087, they will attempt to log in using regular cPanel credentials.

Then cPHulk, CSF (or any security tool/suite that is being used) will block the IP address.

It creates unnecessary issues, impacts satisfaction with the product, and causes real issues for both the customer and host.

I wish cPanel took the time to create a native WordPress management tool rather than porting Plesk's version to cPanel.

It hasn't been the most optimal experience.

 

[cPRex]

@DennisMidjord - I was about to say, this sounds familiar...

I've reached out to the developers about case CPANEL-40864 and I'll post an update once I hear back.

 

[cPRex]

Our developers have reached out to the WordPress Toolkit team and they have an open case on this. Since it's on the Plesk side of things and internal, I don't have a way to share it, but it is being addressed.

 

[MajorLancelot]

Systems are sending this notification to customers:

Updates were not installed for the following items:

1. Website "/home/$username/public_html" (https://$domain.com): Failed to reset cache for the instance #1: WordPress Toolkit was not able to finish running an operation on this site in 60 seconds, so the operation was terminated. This could mean that your WordPress installation might be infected with malware. Check the wp-config.php file of the installation for potential malware code or run an anti-virus scan. If you cannot find any traces of malware, try running the operation again later.

The system generated this notice on Friday, August 5, 2022 at 1:49:30 AM UTC.

“WPT::ClientAutoUpdates” notifications are currently configured to have an importance of “Low”. You can change the importance or disable this type of notification in WHM’s Contact Manager at: https://$host.$domain.com:2087/scripts2/editcontact?event=Application

Have run multiple scanners, and checked the named files and there is nothing that could explain why this is being sent.

Is anyone else running into this?

 

[cPRex]

@MajorLancelot - I'm not seeing similar things on my end right now. Could you open a ticket with our team?

 

[MajorLancelot]

@MajorLancelot - I'm not seeing similar things on my end right now. Could you open a ticket with our team?

Good evening.

Since Mr. Sublett has already posted the same, it seems that you are already aware of it.

But if you still would want a ticket opened, I can go ahead and do that.

 

[cPRex]

I do see we were able to get that case created, so that's all we need on our side. Thanks for sharing that!