Daniel Convissor
Forum Replies Created
-
Forum: Plugins
In reply to: [Login Security Solution] Ban some IPs? Is it possible?Nah, don’t worry.
Sorry, the plugin doesn’t have a way to specify particular IP addresses to block.
Forum: Plugins
In reply to: [Login Security Solution] Protect custom login URLAll login attempts are protected automatically.
Forum: Plugins
In reply to: [Login Security Solution] No IP is listedPerhaps your web server is behind a proxy or load balancer? Make a test script with a phpinfo() call in it. That shows everything PHP has from the HTTP request.
Forum: Plugins
In reply to: [Login Security Solution] Login Failure Table not recording IPPerhaps your web server is behind a proxy or load balancer? Make a test script with a phpinfo() call in it. That shows everything PHP has from the HTTP request.
Forum: Plugins
In reply to: [Login Security Solution] new users password violates policyThis plugin does not hook into WordPress’ password generator. Perhaps I should figure out how to do that, at some point when I have more time.
Forum: Plugins
In reply to: [Login Security Solution] Brute Attack issueThe latest version of Login Security Solution has the ability to block attackers to prevent denial of service situations. It’s the “DoS Tier” setting.
Another option is to set the plugin’s “Match Time” to 0, which disables the slowdowns.
The fix has been released in 0.49.0.
Forum: Plugins
In reply to: [Login Security Solution] Exact password requirementsThe fix has been released in 0.49.0.
Oh, yes, there’s a fourth alternative to add to my list: you didn’t actually go through the password reset process. 🙂 On you site’s “/wp-login.php” page should be a link saying “Lost your password?” (or a translation thereof). Click that, fill in the user name or email address, click the “Get New Password” button. THAT is what generates the email. It is built into WordPress core.
it would have been nice to somehow get my current IP address logged as a validated or verified IP address
The plugin does have that feature… using the IP address used during the password reset process. 🙂
Forum: Plugins
In reply to: [Login Security Solution] Keeps logging out straight awayOdd. You’ll have to debug it and let me know. The plugin has a logging calls in it already. Uncomment them and it will give you a clue as to what’s going on.
Forum: Plugins
In reply to: [Login Security Solution] Exact password requirementsDon’t see such an email.
There are a few possibilities:
* The user name or email address you’re entering in the reset request page is incorrect
* The email address stored in your WP install for the account in question is different than you think it is
* Spam filtering on the destination account’s serverTo get around these issues, you’ll need to log into your web server via SSH and look at the database to figure out / edit the email address being used.
If you’re talking about the password reset page, I just pushed a fix for that to GitHub (https://github.com/convissor/login-security-solution) which will eventually come out in the 0.49.0 release.
The source of the problem was WP removing the
login_form_resetpassaction, so my password policy filter was not be established.Forum: Plugins
In reply to: [Login Security Solution] Exact password requirementsFYI, the fix has been pushed to GitHub if you want to obtain it before the release. https://github.com/convissor/login-security-solution
Forum: Plugins
In reply to: [Login Security Solution] Exact password requirementsFound the fix. Will show up in release 0.49.0 when I get a moment to roll that out.