• Resolved borekon

    (@borekon)


    Hi, i’ve updated apache to 2.4.25 in Debian 9. Suddenly, i c’ant acces to the login page with a 403 error (access forbiden).
    Looking at .htaccess i found the following section:

    <IfModule mod_authz_core.c>
    Require all denied
    Require local
    Require ip 127.0.0.1
    Require host myFQDN
    Require ip 192.168.1.0/24
    </IfModule>

    and commenting out all the rrequire lines or changing Require all denied to Require all granted makes i can access again to wp-login.php
    I wonder if someone else has this problem or if it is a behavioral change from one version of apache to a newer one.
    Thanks in advance.

    • This topic was modified 5 years, 4 months ago by borekon.
Viewing 3 replies - 1 through 3 (of 3 total)
  • Thread Starter borekon

    (@borekon)

    ok, i found that the code above is in

    #AIOWPS_LOGIN_WHITELIST_START
    <FilesMatch "^(wp-login\.php)">
    .
    .
    .
    </FilesMatch>
    #AIOWPS_LOGIN_WHITELIST_END

    Where in the plugin can i found the LOGIN_WHITELIST directive?

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, go to Brute Force -> Login Whitelist.

    Let me know if you need more information or help.

    Thank you

    Thread Starter borekon

    (@borekon)

    Found it! Thanks a lot.
    If i edit htaccess by hand i can use whitelist by host and not only by IP.
    Anyway, the thread is solved.

    Thanks again!

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Problem with .htaccess’ is closed to new replies.