WordPress.org

Forums

BulletProof Security
[resolved] "Invalid username" error on WordPress login page (6 posts)

  1. Vijay Padiyar
    Member
    Posted 2 years ago #

    I am using the latest version of Bulletproof Security (0.48.8) with the latest version of WordPress (3.5.1).

    Everytime I go to my website's WordPress login page (http://<site-url>/wp-login.php), I see an "ERROR: Invalid username" error on top of the login form (see image here: http://btenc7unnvpdjzve.zippykid.netdna-cdn.com/wp-content/uploads/2011/11/invalid-username.png ).

    This happens even if I login from another computer from where my site hasn't been visited at all, nor is the login password stored.

    The issue started after I enabled login security option that is now available within BPS itself. Looks like some bug in that piece of code.

    NOTE: Earlier I was using Limit Login Attempts plugin for this purpose, and never faced this problem.

    http://wordpress.org/extend/plugins/bulletproof-security/

  2. AITpro
    Member
    Plugin Author

    Posted 2 years ago #

    Yep, we are aware of this. If you use /your-site-url/wp-admin/ this does not occur. What is interesting is that this has some unexpected/unplanned benefits such as pre-screening/blocking Brute Force Login attacks so we are looking into a way of keeping the benefits, but getting rid of the initial error when using/accessing the /wp-login.php URL/link directly.

  3. AITpro
    Member
    Plugin Author

    Posted 2 years ago #

    A solution has been found to keep the benefit of pre-screening/blocking automated Brute Force Login attacks and eliminating the error. This will be released in BPS .48.9. Resolving.

  4. Vijay Padiyar
    Member
    Posted 2 years ago #

    When are you releasing version .48.9? I am getting tired of seeing this error daily! :)

  5. AITpro
    Member
    Plugin Author

    Posted 2 years ago #

    BPS .48.9 tentative release date is between 7-15 to 7-16. If you would like to fix this now then here is the code you need to edit/change.

    /bulletproof-security/includes/login-security.php code line 3
    Change/edit this code to...

    if ( $BPSoptions['bps_login_security_OnOff'] == 'On') {
    
    ...this...
    
    if ( $BPSoptions['bps_login_security_OnOff'] == 'On' && isset( $_POST['wp-submit'] ) ) {

    /bulletproof-security/includes/login-security.php code line 480
    Change/edit this code to...

    if ( $BPSoptions['bps_login_security_OnOff'] == 'On') {
    
    ...this...
    
    if ( $BPSoptions['bps_login_security_OnOff'] == 'On' && isset( $_POST['wp-submit'] ) ) {
  6. Phil12123
    Member
    Posted 1 year ago #

    So, why doesn't Word.press fix this? It is 8-22-13, well after the 7-15 to 7-16, and I still get that error every time I try to login so I can comment on a blog post. What a pain!!!!!

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic