Why am I getting this when I try to log into my site

fp911
(@fp911)

11 years, 1 month ago

Security breach, your attempt to access a secure form has been denied!

Why am I getting this message when people try to log into my site. Never seen it before.

Even as admin I can’t log into the site unless I go to wp-admin

http://www.FP911.com

Thanks

Viewing 7 replies - 1 through 7 (of 7 total)

esmi
(@esmi)

11 years, 1 month ago

http://fp911.com/wp-login.php works just fine for me.

Thread Starter fp911
(@fp911)

11 years, 1 month ago

the http://www.FP911.com/wp-admin does work.

But, http://www.FP911.com/login does not…

I made the change quickly so my clients can log into the site.

But, trying to figure out why

http://www.FP911.com/login

give me the

“Security breach, your attempt to access a secure form has been denied!”

esmi
(@esmi)

11 years, 1 month ago

But, http://www.FP911.com/login does not

Because that’s not a WordPress default login url.

ynaditya
(@ynaditya)

11 years, 1 month ago

I too get the same message “Security breach, your attempt to access a secure form has been denied!” when i try to login. This is happening from last week. I am not sure the reason as well.

http://www.udebi.com

Yesterday i observe following file change from plugin Better WP Security – Better WP Security Logs and found following suspicious IP doing some file changes:
2013-03-19, 11:54 AM 87.244.136.125 /?author=1

I am not much knowledgeable in this area, any help is appreciated

xinak
(@xinak)

10 years, 10 months ago

Just curious if anyone discovered the answer to this question? I’m using Magic Members, and the login page is /login (and there is a page that exists at that location), but some users are getting the error “Security breach, your attempt to access a secure form has been denied!”

Alan Niemies
(@alanniemies)

10 years, 6 months ago

Hello, xinak.

I don’t know if you still need this, but I was getting this error on a client’s website and managed to correct it. For me, the issue was with a cache plugin (W3 Total Cache). You have to disable login and other pages from caching.

For W3 Total Cache, go to Performance > Page Cache. Find the section called “Never cache the following pages:” and add these entries, one per line:

/login/
/register/
/transactions/
/payments/
/download/
/lostpassword/
/subscribe/

That should make Magic Members compatible to your website. Hope it helps you or future users. 🙂

inndesign
(@inndesign)

10 years, 2 months ago

To add to Alan’s correct observations, for WP Super Cache Settings, go to the Advanced tab, and scroll down to “Add here strings (not a filename) that forces a page not to be cached.” Insert the same list of exceptions exactly as shown above. Our site ehrmanblog.org also includes the exceptions for Magic Members:

/register-user/
/forum/

“Forum” being the use of Simple:Press 5.4 Build: 10914 at the time of this post.