Still not working. I did a clean install of 4.0.7. When I activate I am kicked out of WordPress. When I try and access the dashboard I get “You do not have sufficient permissions to access this page.”. Thus I am forced to renamed “better-security” to access the dashboard.
The guys at WordFence are probably laughing their assess off.
Guess I gotta wait for 4.0.8
doesn’t work for me either – same issues as WaldenPondDesign across 10 sites
Locked me out. The only way I could get back in was to…
* delete the plug-in folder.
* delete all itsec tables from the database.
* delete all iThemes Security entries in the .htaccess file.
* reinstall plug-in and reconfigure.
Not a very friend way to update a plugin. Also… I am still see these in the 404 logs…
/wp-content/plugins/better-wp-security/lib/icon-fonts/fonts/ithemes-icons.ttf
/wp-content/plugins/better-wp-security/lib/icon-fonts/fonts/ithemes-icons.woff
I added that fonts folder to the 404 whitelist for now. But I could see how that could easily lock someone out in sort order.
Site without jquery works without a problem. Other site with jquery – same problem as zimxo and WaldenPond. Maybe that will help about fix.
Also maybe we must clear database to make plugin work again?
Viktorix post in another thread
http://wordpress.org/support/topic/how-to-reset-ithemes-security-plugin-to-fix-issues
I updated the plugin and now when I try to log in I just get a blank page. On one site I didn’t change any settings but when I logged out, I couldn’t log back in. I just see a white screen.
On the other site, I enabled compatibility mode for hide the backend to test if this was the problem and I still ended up getting locked out of this site.
I removed all reference to iThemes security in .htaccess but I still just get a black screen when I try to log in.
Please help. I used to love this plugin but this update is causing me major headaches.
It doesn’t seem to be the code that’s causing issues, it’s your options in database that are causing conflicts. I can’t waste time to figure out exactly what it is, but it’s clearly in there.
To iThemes, you need to reset better wp security database entries instead of transferring them. Think about this?
What’s more painful?
Redo settings OR not being able to login to your own website at all.
After upgrading to 4.0.8 I think iThemes Security is interfering with the ‘Google Authenticator for WordPress‘ plugin. The form field on the login page to enter my two factor authentication code is now missing. I am just able to login with my username and password. When I look at the Google Authenticator for WordPress settings it is still active as before.
There is a new version that fixed the white screen problem. That was just released. It’s version 4.0.8.
The solution for me to regain access to my site so I could upgrade to the fixed version is found here: http://wordpress.org/support/topic/how-to-reset-ithemes-security-plugin-to-fix-issues?replies=1
I should point out that on the second site that I fixed, all I had to do was rename the Better WP Security folder in the plugins directory to better-wp-security2 from the file manager in the cPanel on my hosting account.
This deactivated the plugin and I could then log in to my site with http://www.mysite.com/wp-admin/. Then once I was logged in, I renamed the plugin folder to it’s original name which was better-wp-security2.
Then I reactivated the plugin on my site and updated to version 4.0.8 and everything seems to be working fine now.
I’m glad they fixed this glitch soon! Thank you to the developers for releasing a new stable version quickly!
>>
Still not working. I did a clean install of 4.0.7. When I activate I am kicked out of WordPress. When I try and access the dashboard I get “You do not have sufficient permissions to access this page.”. Thus I am forced to renamed “better-security” to access the dashboard.
Guess I gotta wait for 4.0.8
>>
Tried 4.0.8 exact same response.
@waldenponddesign, did you try cleaning your database as described in this post: http://wordpress.org/support/topic/how-to-reset-ithemes-security-plugin-to-fix-issues?replies=1?
I just updated 25 sites to 4.0.8 and they’re all working now. I made sure to make a backup of my database before I cleaned the database when fixing the first site. On the other sites, I didn’t have to clean the database. I was able to just update to 4.0.8.
If you’re getting the “You do not have sufficient permissions to access this page.” error message, you might have enabled the hide the backend feature. If you do this, you’ll get that error message if you try to access your site with /wp-admin/. I think it replaces the wp-admin/ with a generic default login slug with something like wplogin but I can’t remember since I used a custom code in that field.
@waldenponddesign. I would try logging in with http://www.yoursite.com/wplogin to see if you still get the error. I just checked and that is the default Login slug for the plugin as shown here: http://ithemes.com/security/recovering-admin-login-url-hide-backend-setting/.
That page is about a different problem than the one you’re having but it shows a screenshot of the default iThemes Security Login slug.
I’ve manually cleared out the old version of the plugin and installed 4.0.8 from scratch. Enabling the hide backend option just loops the login page and when I disable this option and check the logs I see numerous 404 errors which seem to be due to the fact that the plugin is not correctly recognising that my WordPress installation is in a subdirectory.
To confirm my problem with iTheme Security interfering with Google Authenticator for WordPress. I disabled iThemes Security, logged out, navigated to the login page again and my Google Authenticator for WordPress authentication code form field was present requiring me to provide a 2FA code in order to login. I logged in and re-enabled iThemes Security, logged back out again, navigated to the login page and again my Google Authenticator for WordPress authentication form field is gone again and I am able to login using only my username and password.
After update to 4.0.10 my google authenticator plugin not work anymore… in the admin login screen there should be a third field to enter the code from google authenticator after this update the field simply disappeared and now I’m going straight with only username and password, please check this.
