Title: dwinden's Replies | WordPress.org

---

# dwinden

  [  ](https://wordpress.org/support/users/dwinden/)

 *   [Profile](https://wordpress.org/support/users/dwinden/)
 *   [Topics Started](https://wordpress.org/support/users/dwinden/topics/)
 *   [Replies Created](https://wordpress.org/support/users/dwinden/replies/)
 *   [Reviews Written](https://wordpress.org/support/users/dwinden/reviews/)
 *   [Topics Replied To](https://wordpress.org/support/users/dwinden/replied-to/)
 *   [Engagements](https://wordpress.org/support/users/dwinden/engagements/)
 *   [Favorites](https://wordpress.org/support/users/dwinden/favorites/)

 Search replies:

## Forum Replies Created

Viewing 15 replies - 1 through 15 (of 2,197 total)

1 [2](https://wordpress.org/support/users/dwinden/replies/page/2/?output_format=md)
[3](https://wordpress.org/support/users/dwinden/replies/page/3/?output_format=md)…
[145](https://wordpress.org/support/users/dwinden/replies/page/145/?output_format=md)
[146](https://wordpress.org/support/users/dwinden/replies/page/146/?output_format=md)
[147](https://wordpress.org/support/users/dwinden/replies/page/147/?output_format=md)
[→](https://wordpress.org/support/users/dwinden/replies/page/2/?output_format=md)

 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] PHP 7 Compatibility](https://wordpress.org/support/topic/php-7-compatibility-78/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 7 months ago](https://wordpress.org/support/topic/php-7-compatibility-78/#post-8214264)
 * [@jeffhaleword](https://wordpress.org/support/users/jeffhaleword/)
 * According to the iTSec plugin 5.6.1 [Changelog](https://nl.wordpress.org/plugins/better-wp-security/changelog/):
 * > Compatibility Fix: Changed name of the $HTTP_RAW_POST_DATA variable to avoid
   > erroneously tripping PHP 7 compatibility checks.
 * Also the better-wp-security/core/content/system.php file does no longer exist.
 * It appears like you have not updated to the latest iTSec plugin release 😉
    Which
   release are you currently using ?
 * dwinden
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] iTheme Security blocked Google Crawler](https://wordpress.org/support/topic/itheme-security-blocked-google-crawler/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 7 months ago](https://wordpress.org/support/topic/itheme-security-blocked-google-crawler/#post-8202262)
 * [@stencek](https://wordpress.org/support/users/stencek/)
 * I didn’t say updating will help solve the 404s issue 😉
 * But in general there is no point in trying to solve an issue in ancient software.
   
   Update first then worry about the issue(s) if its still there.
 * But at least we now know that after updating (another site) the 404s issue is
   still
    there.
 * Have a look at the iTSec plugin Logs page. Select “**404 Errors Found**” and 
   then click on the value displayed in the **Location** (first) column. Perhaps
   the info in the **Referrer** field helps.
 * dwinden
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] iTheme Security blocked Google Crawler](https://wordpress.org/support/topic/itheme-security-blocked-google-crawler/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 7 months ago](https://wordpress.org/support/topic/itheme-security-blocked-google-crawler/#post-8202132)
 * [@stencek](https://wordpress.org/support/users/stencek/)
 * That website seems to be using the iTSec plugin **4.4.23** version which was 
   released on the 6th of Nov 2014.
 * And the WordPress release is 3.4.2 ? Seriously that’s like ancient …
 * If true you’ve got bigger problems to worry about.
 * Note because of the ancient WordPress release used, there are probably NO iTSec
   plugin updates automatically being offered. The current iTSec plugin release 
   is 5.6.1
    It requires WordPress 4.1 or higher.
 * U P D A T E WordPress ASAP !
 * dwinden
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] Files on my site have been changed, what to do?](https://wordpress.org/support/topic/files-on-my-site-have-been-changed-what-to-do/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 8 months ago](https://wordpress.org/support/topic/files-on-my-site-have-been-changed-what-to-do/#post-8163214)
 * [@jannnnnneke](https://wordpress.org/support/users/jannnnnneke/)
 * >  I didn’t make any changes yesterday to my site. I only updated some plugins
   > and I think also WordPress.
 * So you made some changes … 😉
 * 6 of the 7 files listed are included in the latest WordPress release (4.6.1) 
   [List of Files Revised](https://codex.wordpress.org/Version_4.6.1).
    WordPress
   4.6.1 was released on 7 Sept.
 * The missing entry (wp-content/wflogs/config.php) seems to belong to the WordFence
   plugin which was last updated 2 weeks ago.
 * So looks like your file changes can easily be explained …
 * dwinden
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] disabled XML-RPC](https://wordpress.org/support/topic/disabled-xml-rpc/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 8 months ago](https://wordpress.org/support/topic/disabled-xml-rpc/#post-8156444)
 * [@forallatlantis](https://wordpress.org/support/users/forallatlantis/)
 * It’s valid html.
    Is it causing any problems ?
 * Anyway this is not an iTSec plugin issue.
    The link is hardcoded in the theme.
   If you want to get rid of it remove it from the header.php file of the active
   theme.
 * dwinden
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] How did hackers guess my userid/email to attempt to log in?](https://wordpress.org/support/topic/how-did-hackers-guess-my-useridemail-to-attempt-to-log-in/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 8 months ago](https://wordpress.org/support/topic/how-did-hackers-guess-my-useridemail-to-attempt-to-log-in/#post-8153977)
 * [@marties](https://wordpress.org/support/users/marties/)
 * Go test before posting.
 * That said you will probably need some insiders info on WordPress Nicknames to
   get it right.
 * Stay safe and have a good day 😉
 * dwinden
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] How did hackers guess my userid/email to attempt to log in?](https://wordpress.org/support/topic/how-did-hackers-guess-my-useridemail-to-attempt-to-log-in/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 8 months ago](https://wordpress.org/support/topic/how-did-hackers-guess-my-useridemail-to-attempt-to-log-in/#post-8153744)
 * [@marties](https://wordpress.org/support/users/marties/)
 * There are different ways to deal with user enumeration.
    The iTSec plugin does
   not totally disable user enumeration.
 * But it does provide 2 options in the **WordPress Tweaks** module which
    are related
   to user enumeration:
    - Force Unique Nickname
    - Disable Extra User Archives
 * dwinden
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] Where do I change the from email address in notifications](https://wordpress.org/support/topic/where-do-i-change-the-from-email-address-in-notifications/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 8 months ago](https://wordpress.org/support/topic/where-do-i-change-the-from-email-address-in-notifications/#post-8138616)
 * [@themadguru](https://wordpress.org/support/users/themadguru/)
 * Trello is where iThemes has parked their public roadmap for the iThemes Security
   Pro plugin.
    The [Security](https://ithemes.com/security/) page on iThemes’s 
   website includes a link to the public roadmap on Trello. (Scroll down to the **
   More Pro Features Coming Soon** section). Trello is used for tracking feature
   requests and allows you to upvote existing requests (including yours).
 * Furthermore according to the FAQ section in the iTSec plugin readme.txt file:
 * >  = Where can I get help if something goes wrong? =
   >  * Official support for 
   > this plugin is available for [iThemes Security Pro](http://ithemes.com/security/)
   > customers. Our team of experts is ready to help.
   > Free support may be available with the help of the community in the [WordPress.org support forums](http://wordpress.org/support/plugin/ithemes-security)(
   > Note: this is community-provided support. iThemes does not monitor the WordPress.
   > org support forums).
 * Note on the “iThemes does not monitor the WordPress.org support forums” part:
   
   This is not entirely true. iThemes occasionally responds to topics but barely
   follows up. Mostly when a new version is released and people report issues they
   will respond. Otherwise their presence in this forum is minimal to non existant.
 * dwinden
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] Where do I change the from email address in notifications](https://wordpress.org/support/topic/where-do-i-change-the-from-email-address-in-notifications/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 8 months ago](https://wordpress.org/support/topic/where-do-i-change-the-from-email-address-in-notifications/#post-8137588)
 * [@themadguru](https://wordpress.org/support/users/themadguru/)
 * Upvote [this](https://trello.com/c/rVjj3ZNz/200-give-the-ability-to-edit-the-from-address-on-outgoing-emails-currently-it-s-hard-defaulted-to-the-admin-address-of-the-wordpress)
   feature request on Trello.
 * dwinden
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] Backups happen without Schedule, and mailed twice](https://wordpress.org/support/topic/backups-happen-without-schedule-and-mailed-twice/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 8 months ago](https://wordpress.org/support/topic/backups-happen-without-schedule-and-mailed-twice/#post-8135466)
 * That’s a totally different issue with a root cause which is specific for your
   env.
 * dwinden
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] iThemes Security tries to ban server IP](https://wordpress.org/support/topic/ithemes-security-tries-to-ban-server-ip/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 8 months ago](https://wordpress.org/support/topic/ithemes-security-tries-to-ban-server-ip/#post-8134730)
 * [@mat_](https://wordpress.org/support/users/mat_/)
 * How does such an email exactly look like ?
 * What web server is your site using ?
 * Is the site behind a proxy ?
 * Without additional info it’s going to be difficult to help you.
 * dwinden
    -  This reply was modified 9 years, 8 months ago by [dwinden](https://wordpress.org/support/users/dwinden/).
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] Appearance – for english (Редактор – на русском )](https://wordpress.org/support/topic/appearance-for-english-%d0%a0%d0%b5%d0%b4%d0%b0%d0%ba%d1%82%d0%be%d1%80-%d0%bd%d0%b0-%d1%80%d1%83%d1%81%d1%81%d0%ba%d0%be%d0%bc/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 8 months ago](https://wordpress.org/support/topic/appearance-for-english-%d0%a0%d0%b5%d0%b4%d0%b0%d0%ba%d1%82%d0%be%d1%80-%d0%bd%d0%b0-%d1%80%d1%83%d1%81%d1%81%d0%ba%d0%be%d0%bc/#post-7720064)
 * [@gorhorbatov](https://wordpress.org/support/users/gorhorbatov/)
 * According to the 5.5.0 [Changelog](https://wordpress.org/plugins/better-wp-security/changelog/):
 * >  Enhancement: The WordPress Tweaks feature now uses the “Disable File Editor”
   > setting by default on new installations.
 * “Disable File Editor” setting is located here:
 * Безопасность > Настройки > Подстройки WordPress > Редактор файлов
 * dwinden
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] error 500 with php7](https://wordpress.org/support/topic/error-500-with-php7/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 8 months ago](https://wordpress.org/support/topic/error-500-with-php7/#post-7717329)
 * [@jos](https://wordpress.org/support/users/jos/)é
 * Disable the **Database Backups** module.
 * dwinden
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] error 500 with php7](https://wordpress.org/support/topic/error-500-with-php7/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 8 months ago](https://wordpress.org/support/topic/error-500-with-php7/#post-7717321)
 * @ivanomio & [@jos](https://wordpress.org/support/users/jos/)é
 * Check your web server error_log for any errors.
 * Oh and what web server and what version of that web server are you using ?
 * dwinden
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] New login slug says I don't have permission to access](https://wordpress.org/support/topic/new-login-slug-says-i-dont-have-permission-to-access/)
 *  [dwinden](https://wordpress.org/support/users/dwinden/)
 * (@dwinden)
 * [9 years, 8 months ago](https://wordpress.org/support/topic/new-login-slug-says-i-dont-have-permission-to-access/#post-7716063)
 * [@dcoplan](https://wordpress.org/support/users/dcoplan/)
 * Wicked video 😉
 * Looks like there is something in your .htaccess file that is blocking your new-
   login-slug (which by the way is one of the most creative ones I’ve seen so far).
 * So we can try and figure out the blocking rule in the .htaccess file or use a
   backdoor (or do both).
 * dwinden

Viewing 15 replies - 1 through 15 (of 2,197 total)

1 [2](https://wordpress.org/support/users/dwinden/replies/page/2/?output_format=md)
[3](https://wordpress.org/support/users/dwinden/replies/page/3/?output_format=md)…
[145](https://wordpress.org/support/users/dwinden/replies/page/145/?output_format=md)
[146](https://wordpress.org/support/users/dwinden/replies/page/146/?output_format=md)
[147](https://wordpress.org/support/users/dwinden/replies/page/147/?output_format=md)
[→](https://wordpress.org/support/users/dwinden/replies/page/2/?output_format=md)