Hi,
What do you mean by “can’t access”? Is every page of the forum being blocked, including the homepage at forum.xxxxxx.com? Can you include an example of (real) URL being blocked? There has to be some part in it that triggers block rule from Advanced Character String Filter.
Anyway, Advanced Character String Filter should not prevent anyone from accessing your WordPress login page, so there should be no corellation between ACSF being disabled and increased number of lockouts. In other words, even if you have ACSF enabled, you should get the same number of lockouts.
Cheers,
Česlav
I did a few tests by enabling/disabling this option for 12/24h, few times, and the results are: there are about 20 lockouts per night when this option is disabled, but when it’s enabled I’ve literally ZERO lockouts. I’ve been so happy for a few days, but then some of my readers just sent my a mail with info that they can’t access into any category in my forum, which is a deal breaker for me.
String filter enabled for now.
http://forum.casualism.pl —> You can’t open any of existing categories but clicking on some topics in the right side surprisingly works normally.
I checked your site and the following rule from ACSF ruleset is probably causing your problems (it blocks all forum pages that are served via forumdisplay.php):
RedirectMatch 403 display\.
If you can edit your .htaccess, try to comment out the line with this rule and see if it helps. However, be aware that as soon as you re-save AIOWPSF firewall settings, your change will be lost.
Better solution would be to disable ACSF and paste all ACSF rules but this one into Custom Rules, but Custom Rules have an issue with backslashes in the moment…
