whitelisting strings for database scans

lockedm

Hi, I'm getting this alert as part of the nightly database scan:

Suspicious database record found in table "wpg1_options" matching rule "Licence data in options": {"option_id": 11397, "option_name": "wt-smart-coupon-pro_licence_data", "option_value": "a:5:{s:3:\"key\";s:40:\"XXXXXXX";s:5:\"email\";s:27:\"XXXXXX\";s:6:\"status\";s:6:\"active\";s:8:\"products\";s:33:\"Smart Coupons for WooCommerce Pro\";s:11:\"instance_id\";s:32:\"XXXXXXX\";}", "autoload": "yes"}

I want to whitelist it so it does not show in future scans. I've added "wt-smart-coupon-pro_licence_data" in to the "Managed whitelisted DB entries for DB scanning (by string match)" file but it continues to alert for it. So what do I need to enter to have this whitelisted? Many thanks.

cPFence

lockedm

Don’t add quotes around the whitelist string, just the entry itself. After updating the file, restart cPFence, then trigger a DB scan for that site only to test. If it still alerts after that, drop us a ticket and we’ll check it out.

lockedm

Thanks. I'd assumed adding it to the system file via the webui would do all was needed. Once I restarted cpfence, it is whitelisted correctly.