Daniel Convissor's Replies - page 14

Forum Replies Created

Viewing 15 replies - 196 through 210 (of 474 total)

← 1 2 3 … 13 14 15 … 30 31 32 →

Forum: Reviews
In reply to: [Login Security Solution] Bulldog at the gate

Plugin Author Daniel Convissor
(@convissor)

13 years ago

Hi Jbharding:

You’re having a problem with some CAPTCHA plugin. LSS doesn’t do CAPTCHA.

Good luck,

–Dan

Forum: Plugins
In reply to: [Login Security Solution] Stopped recording IP in database?

Plugin Author Daniel Convissor
(@convissor)

13 years ago

LSS failure tracking gets stored the wp_login_security_solution_fail table.

Forum: Reviews
In reply to: [Login Security Solution] seems to have rendered my site inoperable today

Plugin Author Daniel Convissor
(@convissor)

13 years ago

Hi:

Login Security Solution does not produce any text saying “2 attempts left.”

–Dan

Forum: Plugins
In reply to: [Login Security Solution] "Authenticate filter not called" (but able to login from other computer?)

Plugin Author Daniel Convissor
(@convissor)

13 years ago

Glen:

Did the problem _arise_ when you switched between browsers?

Can you please try to uncomment the log() calls and reproduce the problem?

Thanks,

–Dan

Forum: Plugins
In reply to: [Login Security Solution] "Authenticate filter not called" (but able to login from other computer?)

Plugin Author Daniel Convissor
(@convissor)

13 years ago

Hi Gforeman:

You mentioned having tried “cache-cleaning.” So I assumed you were talking about clearing the browser’s cache. Cookies are separate from the cache, so that’s why I suggested deleting your cookies. Did you actually delete your cookies too, or did you just clear the cache?

Anyway, please don’t be distracted by that comment. Please answer the question in my prior post:

I’m trying to sort out the source of the problem: Do you use multiple browsers when accessing your site?

Thanks!

Forum: Plugins
In reply to: [Login Security Solution] "Authenticate filter not called" (but able to login from other computer?)

Plugin Author Daniel Convissor
(@convissor)

13 years ago

Hi Glen:

As mentioned in some earlier threads, clear your cookies.

I’m trying to sort out the source of the problem: Do you use multiple browsers when accessing your site?

Thanks,

–Dan

Forum: Plugins
In reply to: [Login Security Solution] Password Strength settings

Plugin Author Daniel Convissor
(@convissor)

13 years ago

I’ll think about it (some more).

Forum: Plugins
In reply to: [Login Security Solution] Feature Suggestion

Plugin Author Daniel Convissor
(@convissor)

13 years ago

[commenting to bring this back to the top of the thread list]

Forum: Plugins
In reply to: [Login Security Solution] Password Reset after Upgrade

Plugin Author Daniel Convissor
(@convissor)

13 years ago

Marking resolved due to lack of feedback. If you have more information, please mark it “not resolved” and add the info.

Forum: Plugins
In reply to: [Login Security Solution] "Authenticate filter not called" (but able to login from other computer?)

Plugin Author Daniel Convissor
(@convissor)

13 years ago

The log calls mentioned in my earlier post are now in the latest releases, so you just upgrade and then uncomment the log lines.

Forum: Plugins
In reply to: [Login Security Solution] LFD Alerts "Excessive processes running"

Plugin Author Daniel Convissor
(@convissor)

13 years ago

Hi Lyndonr:

You’re the only person mentioning these kinds of issues. The plugin has been downloaded about 50,000 times. It sounds like a problem with your hosting company’s setup. I’d look at WHM, whatever that is.

Sorry I can’t be of more help. Keep me posted.

–Dan

Forum: Plugins
In reply to: [Login Security Solution] Still can't get into

Plugin Author Daniel Convissor
(@convissor)

13 years ago

Hi Dibbit:

I’ll try to come up with some logic that will preserve security while keeping people who shot themselves in the foot from ending up in a catch 22. (Hmm… How many more mixed metaphors can I throw in?)

–Dan

Forum: Plugins
In reply to: [Login Security Solution] Buddypress compatibility

Plugin Author Daniel Convissor
(@convissor)

13 years ago

Hi:

Please examine the source code of your other plugins to see if they use the user_profile_update_errors or password_reset actions. If so, perhaps their actions are doing something non-kosher?

–Dan

Forum: Plugins
In reply to: [Login Security Solution] LFD Alerts "Excessive processes running"

Plugin Author Daniel Convissor
(@convissor)

13 years ago

Lyndonr: What are the names and versions of your OS, web server, PHP and database system? Sounds like you’ve got some bugs going on in one or more of them.

Forum: Plugins
In reply to: [Login Security Solution] Can't log in after brute force attack

Plugin Author Daniel Convissor
(@convissor)

13 years ago

Hi Ctortola:

Your report of the “406 Not Acceptable” is unusual. Login Security Solution does not produce such a result. Do you have some other plugins installed? Have you grep‘ed your code base for 406.

As far as LSS blocking your login attempts, logging in with an attacked user name should only put you through the password reset process once. During that process, LSS stores the IP address you’re coming in from and puts it on a white list. But that whitelist doesn’t get used if the IP address is the same as the “attacker’s.”

This can happen for a few reasons:
* You’re the “attacker” (due to testing, forgetting your password, etc)
* Your web server is behind a proxy
* You’ve got malware on your computer
* You’re on some network (university, corporate, etc) that says you and the “attacker” are coming from the same IP. The “attacker” could be some other user(s) forgetting their passwords.

The way to help figure out what’s happening is to examine the <prefix>login_security_solution_fail table.

–Dan

Viewing 15 replies - 196 through 210 (of 474 total)

← 1 2 3 … 13 14 15 … 30 31 32 →