b-cat
Forum Replies Created
-
Forum: Hacks
In reply to: How to submit page password via URL parametersSorry…I think you might misunderstand my question.
I don’t want to change the manual login form. For people who need to manually log in, the existing form created by WordPress is fine. (That’s the form code I provided above.)
What I want to do is this: I want to be able to provide selected users with a specific link (for example, I want to send the link in an email) that links directly to the password-protected page, and that link should have the password already included in the URL.
For example, the URL I might provide to someone might look like this:
http://mysite.com/page.htm?[place various parameters here]The question is: What is the parameter string that needs to follow the “?” question mark at the end of the URL?
Thanks.
Forum: Plugins
In reply to: [ThreeWP Activity Monitor] Not displaying failed loginsI found a sort of solution, and maybe this info will help other people, too.
I have turned off the the function in Better WP Security that relates to limiting login attempts (under the Login tab in BWPS), and now ThreeWP is working properly … and BWPS is also working (but without the login limits features).
To get some login limiting features, I next installed Limit Login Attempts plugin, which seems to duplicate most of the login limit features of BWPS. I also found a plugin called Whitelist IP for Limit Logins Attempts, which allows you to whitelist your own IP address (or others) so you won’t get locked out of your own system by the Limit Login Attempts plugin.
And ThreeWP appears to still be working properly now, so I’m happy!
Forum: Plugins
In reply to: [iQ Block Country] Error: Cannot modify header informationSure…how do I reach you by email? I couldn’t find a message option on your user profile link (or maybe I’m missing something).
Forum: Plugins
In reply to: [ThreeWP Activity Monitor] Not displaying failed loginsNo change after disabling Wordfence. However, when I disable Better WP Security, the problem appears to go away. I can now see all the bad logins!
This is kinda strange, since ThreeWP had been previously working just fine alongside BWPS for a long time, so I’m not sure why they are conflicting now.
I intend to continue using BWPS, so I’d like to figure out how to fix the conflict with ThreeWP. Are there any settings in BWPS that you think I should turn off (or on) to prevent the apparent conflict with ThreeWP (or vice versa)?
Thanks.
Forum: Plugins
In reply to: [ThreeWP Activity Monitor] Not displaying failed loginsThis is an update to the above question.
All the problems described above remain the same. The plugin logs all valid logins and logouts, but it does not show anything when I deliberately attempt a bad login. Why not?
However, my bad logins are recorded by Better WP Security, and also by Wordfence. So why are the bad logins not showing up in ThreeWP Activity Monitor?
To make this even more strange, when I log out and don’t visit the site’s admin panel for several hours, it appears that ThreeWP DOES record bad logins from brute force attacks from obscure countries around the world. Okay, that’s good! But why does it not record my own bad logins when I am trying to test the plugin? Very strange.
Forum: Plugins
In reply to: [iQ Block Country] Error: Cannot modify header informationOne more note…
I’ve noticed that Better WP Security plugin has an option to manually block specific IP addresses. I’m using that plugin, also, and when it blocks an IP address, it seems to do this before the site or the theme loads any info at all, and it delivers in a clean 403 error page without any “cannot modify headers” errors.
I think Better WP Security is doing this by modifying the root .htaccess file and blocking IP addresses that way.
I don’t know if that is an approach that makes sense for your plugin, but just thought it might be something to consider if these header errors are a common problem.
All the best!
Forum: Plugins
In reply to: [iQ Block Country] Error: Cannot modify header informationThanks, Pascal. I think it is fixed now. Here is what I did…
(1) First, in the plugin php file, I removed the header line that you describe above:
header ( 'HTTP/1.1 403 Forbidden' );However, there were still some header error messages.
(2) So then I removed these four (4) header lines, also:
// Prevent as much as possible that this error message is cached: header("Cache-Control: no-store, no-cache, must-revalidate"); header("Cache-Control: post-check=0, pre-check=0", false); header("Pragma: no-cache"); header("Expires: Sat, 26 Jul 2012 05:00:00 GMT");And now it appears to work without displaying header errors.
I don’t know if it is a serious problem if the error messages are or are not cached, but I guess it won’t matter too much in my case since I’m only blocking people from countries who should not be contacting our site in the first place.
Thanks again!
Forum: Plugins
In reply to: [iQ Block Country] Error: Cannot modify header informationThanks, Pascal.
Your links above are helpful.
However, I have tried the solutions you recommend, but they don’t seem to work on my site. I called my hosting provider, and got instructions on how to turn off the display errors function in the php.ini file, and I’ve also deleted the
<?php language_attributes(); ?>code in the theme’s header.php file…but it still displays error messages.I also tried modifying the root htaccess file, but that crashed the site, so I’ve restored the original .htaccess file.
I might just have to live with this.