We have Better WP Security running on a multi site with Login Security Solution.
Both are installed and activated at the network level.
I have disabled 'Enable Login Attempts' and deselected 'Blacklist Repeat Offender' but the plugin is still blacklisting IP addresses. More than that, it is blacklisting regular users who are simply accessing the home page from an internal page.
This seems to happen only in IE8. It occurred on http://www.danbrady.co.uk and again when tested in browserstack using IE8 windows - go to an internal page then click on 'Home' - it brings back a most unhelpful "error" page which I think is the 418 teapot error. The email notification I get from this event states the IP has been locked out "due to too many attempts to open a file that does not exist."
Login Security Solution suggests that some features need to be disabled in BWPS for them to 'play nicely' together:
Better WP Security: Their "Enable Login Limits" and "Enable strong password enforcement" functionality conflict with our features. The good news is we provide more robust protection in those areas and the Better WP Security "Settings" page lets you disable those features in their plugin.
I have disabled the login limit as described above so how is this occurring?
Can you please be specific about which settings should be disabled?
FYI we have APC caching on the server