beardedginger
Forum Replies Created
-
Hi,
It sounds like you may be under a Brute Force attack. The Hide Backend feature is a great extra layer of security through obscurity, but it isn’t bulletproof. I would suggest relying on stronger features like two-factor authentication, reCAPTCHA and enforce strong passwords to secure your login.
https://ithemes.com/the-top-5-wordpress-security-myths-debunked/
Keep in mind, hiding the backend does not make it inaccessible, only changes the login URL.
Thanks,
Matt
iThemes.comHi,
This is going to be a server configuration issue regarding cURL. I’d suggest contacting your host and sharing the error.
https://www.google.com/search?q=cURL+error+7%3A+http_request_failed&oq=cURL+error+7%3A+http_request_failed&aqs=chrome..69i57.375j0j7&sourceid=chrome&ie=UTF-8
Thanks,
Matt
iThemes.comHi,
> as I am getting a lot of Bruteforce attacks on my digital ocean server.
Although this is not in direct reference to the xmlrpc.php attacks I would like to recommend enforcing strong passwords to help secure your login. You can also use methods such as reCAPTCHA and 2-factor authentication. Both of those options are available to Security Pro customers, but there are other plugins that can serve that purpose if you do not wish to upgrade.
Thanks!
Matt
iThemes.comForum: Plugins
In reply to: [Germanized for WooCommerce] Multistep checkout first step bugHi,
Is there anything in iThemes Security that needs to be adjusted to accommodate this feature for that plugin?
Thanks,
Matt
iThemes.comHi,
Unfortunately, there is no way to prevent this from happening. My best suggestion would be to reach out to the site owner for the emails you are receiving and ask them to remove your email from their list.
Thanks,
Matt
Hi,
We appreciate your input and I will be sure to pass this suggestion on to the developer.
We are currently in the process of finding a new IP checker to use. Unfortunately, we do not have a timeline of when this change will be implemented. My apologies for any frustration this may cause.
Thanks,
Matt
iThemes.comHi,
The link below has multiple steps you can take to resolve this issue.
https://kinsta.com/blog/err_too_many_redirects/
You may also try removing the Security Plugin completely, following the steps above and then reinstalling the Security Plugin to see if that resolves the issue?
Thanks,
Matt
Hi,
You can add the code below into the wp-config.php file anywhere as long as it is between the first line ( <?php ) and the line that says / That’s all, stop editing. Happy Blogging / to temporarily disable all features so you can log in.
`define(‘ITSEC_DISABLE_MODULES’, true);
`
Once you log in, can you disable iThemes Security to see if the issue still persists?Thanks,
Matt
Forum: Fixing WordPress
In reply to: Product Finder PluginHi,
Not sure if this is what you are looking for, but it might help.
https://wordpress.org/plugins/add-search-to-menu/#description
Thanks,
Matt
Hi,
Unfortunately, that is not something that can be edited. That being said, there are many features within Security Pro to assist in securing your site such as reCAPTCHA, 2 Factor Authentication.
Thanks,
Matt
Hi,
Can you try checking for a plugin conflict? Deactivate all other plugins and see if that helps. If it does help, then reactivate the plugins one at a time to find the culprit(s), if any.
Can you also check for a theme conflict by switching to a default WordPress theme?
https://ithemeshelp.zendesk.com/hc/en-us/articles/115003073433-Checking-for-a-Conflict
Thanks!
Matt
iThemes.comHi Mark,
Can you try checking for a plugin conflict? Deactivate all other plugins and see if that helps. If it does help, then reactivate the plugins one at a time to find the culprit(s), if any.
Can you also check for a theme conflict by switching to a default WordPress theme?
https://ithemeshelp.zendesk.com/hc/en-us/articles/115003073433-Checking-for-a-Conflict
Thanks!
Matt
iThemes.comHi,
Will you please try disabling the following features to see if it helps?
Hackrepair Blacklist Feature (Banned Users)
Filter Long URL Strings (System Tweaks)
Filter Suspicious Query Strings in the URL (System Tweaks)
Filter Non-English Characters (System Tweaks)
You may also try enabling XML-RPC and allowing Full Access to the REST API.
Thanks,
Matt
iThemes.comHi,
What is the other plugin you are using that Security is conflicting with?
Thanks,
Matt
iThemes.comHi John,
You can choose how long the logs are kept in the Security plugin by navigating to Security> Settings> Global Settings> Days to Keep Database Logs.
Thanks,
Matt
iThemes.com