WordPress.org

Ready to get started?Download WordPress

Forums

BulletProof Security
[resolved] Can't login after update (4 posts)

  1. PetiteJo
    Member
    Posted 1 year ago #

    I just installed the last update of the plugin on multiple sites and... I can't access my admin panel anymore, on any of them. At first I didn't see anything was wrong, because I was connected to the admin panel. Without disconnecting, when I came back later, I discovered it disconnected me automaticaly. I wasn't able to access the admin panel anymore (I can access login page, but even when providing username and password, I'm stuck on the login page).

    Tried renaming the plugin folder, doesn't work. Tried removing htaccess files (in the root and in the wp-admin folder), doesn't work. Tried deleting cache and cookies of my browser, doesn't work. Tried to put htaccess files from a backup, doesn't work. For now I'm just hopping I won't have to put back a bunch of backups. Sites themselves are working well.

    Must say I use Better WP Security plugin too, I updated it too. So what can I do now? Please help me!

    http://wordpress.org/extend/plugins/bulletproof-security/

  2. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Since you have already done all of the troubleshooting steps that would allow you to access your login page/Login and none of them worked then what is probably happening is your Host has disabled your Login page. We have been contacted by a lot of folks whose Host's are doing this to deal with the massive amounts of Brute Force Login attacks that are still going on. Check with your Host and ask them if they are blocking access/Logins to your login page.

  3. PetiteJo
    Member
    Posted 1 year ago #

    I think that's maybe what happened. I tried again a couple of hours after and everything worked fine. Weird!

  4. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Cool. There is also something going on at the DNS level due to these Brute Force Attacks.

    Example: An Australian site owner we were assisting was unable login to his site for 24 hours and the host was claiming it was nothing they were doing, which appeared to be true. I was able to login to the site from the US. Somewhere a DNS Server (possible Cloud Server) was blocking his IP address, but not the host's DNS Servers???

    There is no sign of the Brute Force attacks slowing down and there are now a lot of victim/hacked sites in the mix that are doing automated attacks themselves on other sites - what a pain. ugh.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic