Daniel Convissor

0.36.0 is out the door!

Hi Jeff:

I misremembered. I thought the password reset screen acted the same way as the profile edit page does. You’re right, the password reset page gives a generic error message. I set it up that way because there’s a HTTP redirect involved, so when initially writing the program last year I took that shortcut. Sorry for the misspeaking and for the lousy user experience.

BUT!… Your inquiry inspired me to change how the password validation error messaging works. Now I pass specific error message keys to the HTTP redirect and then use those keys to generate specific error messages on the password reset page. This change has been pushed to the Github repository.

You can get the latest code there now, or you can wait for the next release, 0.36.0, from the WordPress plugins repository when I get a chance to push it up there in the next day or so.

Thanks,

–Dan

LSS doesn’t do CAPTCHA. Perhaps there’s there’s a weired interaction between LSS and another plugin that does? Can you disable your CAPTCHA plugin and see what happens?

Heya: It’s really weird. Perhaps a weird interaction between LSS and some other plugins you have. The only way to figure out what’s going on issit down and debug the situation. Good luck. –Dan

Please provide more specifics.

Hi:

Can you please edit wp-includes/wp-db.php, go to the query() method, and right above the mysql_query() call add the following snippet. Adjust the resulting file name to be whatever you want (I set it to /tmp/lss.log).


if (!$this->dbh) {
file_put_contents('/tmp/lss.log',
var_export(debug_backtrace(DEBUG_BACKTRACE_IGNORE_ARGS), true));
}


Then make a login attempt to your site using a bad user name and password. Send me the results at danielc@analysisandsolutions.com.

Thanks.

Hi: You don’t insert the code. It just works. Follow the installation instructions. http://wordpress.org/extend/plugins/login-security-solution/installation/

Hi David:

Sure, I’d love to see the reporting code. Thanks,

–Dan