Daniel Convissor
Forum Replies Created
-
Yeah, that happens when you “attack” yourself. 🙂 As you probably figured out, LSS only uses data within the timeframe of our “How far back, in minutes, should login failures look for matching data?” setting.
Forum: Plugins
In reply to: [Login Security Solution] "resource" use by LSSFYI, the time frames are adjustable in the plugin’s settings page, if you want.
Forum: Plugins
In reply to: [Login Security Solution] "resource" use by LSSIt’s probably due to the long script run times LSS produces to slow down the attackers. Oh well.
Forum: Plugins
In reply to: [Login Security Solution] Conflict with BulletProof Security?I don’t know. You’ll have to try and report back.
Forum: Plugins
In reply to: [Login Security Solution] Question about logged password MD5No. That’s insecure.
Forum: Plugins
In reply to: [Login Security Solution] WP 3.8 Admin Color Scheme changer is brokenGood sleuthing, Mixoet! That sounds like a candidate for a WP bug ticket. The color changer and the password strength meter should be independent of each other.
Forum: Plugins
In reply to: [Login Security Solution] Attack IP not listed in visitorsThis is something you’ll have to debug.
Forum: Plugins
In reply to: [Login Security Solution] Works wrong behind reverse proxyX-Forwarded-For can be inserted by users at will and set to any value. If LSS automatically deferred to that value, attackers could evade detection by changing the header every time.
Forum: Plugins
In reply to: [Login Security Solution] WP 3.8 Admin Color Scheme changer is brokenHi:
That’s weird. I’ll poke around at some point when I have some free time. Or if you’re the adventurous sort, debug what’s going on and let me know.
Thanks,
–Dan
Forum: Plugins
In reply to: [Login Security Solution] Attack IP not listed in visitorsHow soon are you looking at AwStats after the email is sent? Some hosts and programs have a lag between when the hit is made and the log data is made available.
Forum: Plugins
In reply to: [Login Security Solution] Password Strength settings (revisited)Good points. I’ll look into it.
Forum: Plugins
In reply to: [Login Security Solution] Password reset is not allowed for this userThe user is misremembering or mistyping their user name or email address.
Forum: Plugins
In reply to: [Login Security Solution] Login Failure Table not recording IPWerid. Not sure what’s going on. You’ll need to debug it. Uncomment the
log()calls in login-security-solution.php. Then examine the log file (/var/log/login-security-solution.log).Forum: Plugins
In reply to: [Login Security Solution] Work with WP Better Security "Hide" functionality?Will have to take a closer look.
I’m guessing Woocommerce isn’t calling the
user_profile_update_errorsaction.