[ad_1]
We ran a Sucuri SiteCheck on a client’s site. It reported that there is a security risk due to a URL on the site at [MySite.com/.git/HEAD]). It also reports that it is “Unable to scan the page. Page has a redirect loop.” Indeed, if I go to that URL, I get a Chrome error saying…
This page isn’t working
[mysite.com]) redirected you too many times.Try clearing your cookies.
ERR\_TOO\_MANY\_REDIRECTS
I’m not questioning Sucuri’s report, but I can’t seem to find this URL anywhere on the site. There are several plugins whose source code contain reference to github, but none with that specific url (.git/HEAD).
Any idea how to find out where this is coming from?
Or…should I just forget about this and create a redirect from that URL to the home page?
\-M
[ad_2]
Can you log into the server and check if there is any file at that path?
Check if there are any redirects in your .htaccess while you are there.
Try disabling your plugins and see if the problem stops.
If you have SSH access you could try:
grep -r “.git/HEAD” /path/to/your/website
Also check if there’s anything in your access log or error log for these requests that may show you anything.