dwinden
Forum Replies Created
-
Can you try and temporarily switch to the WordPress default twenty sixteen theme ?
It could be a theme specific issue/conflict with the iTSec plugin.
It looks like you are currently using a custom theme named golfinhorotador2.
dwinden
This issue(s) has been fixed in the iTSec Pro 2.8.0 or higher release.
I’ll close this topic after confirmation the next iTSec plugin version includes the fix(es).
dwinden
Perhaps it could help when we temporarily disable the WordPress Tweaks Login Error Messages setting. From your screenshot I can see it is probably enabled.
However since you are unable to log into the WordPress Dashboard we will need to change the setting in the database by using phpMyAdmin:
– Log into phpMyAdmin.
– Click on the wp_options table of the relevant database.
– Then click on the SQL tab.
– Execute the following query:select * from wp_options where option_name = ‘itsec-storage’;
– Doubleclick on the option_value field.
Search for:s:12:”login_errors”;b:1
and change it into:
s:12:”login_errors”;b:0
-Click anywhere outside the option_value field to save the change.
We should now be able to see a login error message on the wp-login.php page. It might help us understand what is going wrong.
dwinden
@rob JH
Ahh right, get it now.
Hi is it possible to do regex in the file change detection paths?
No this is currently not supported.
Would be a great enhancement 😉dwinden
@rob JH
Yes, simply exclude the wp-content/uploads/gravity_forms/RANDOM-STRING/tmp folder from the File Change Detection.
dwinden
Got curious and checked the backup code.
Found evidence that seems to indicate simply enabling the Database Backup module is enough to trigger automatic database backups … –> bug !
However this will only happen if (Schedule Database Backups) Backup Interval setting > 0.
The default Backup Interval value seems to be 3 (days) …To check the Backup Interval value tick the Schedule Database Backups checkbox. As a result the Backup Interval setting and its value will be displayed underneath.
So in theory ticking the Schedule Database Backups checkbox and then setting the Backup Interval setting to 0 followed by clicking on the Save Settings button will stop triggering automatic Database Backups even though the Database Backups module is enabled.
I know, it doesn’t make sense but it will probably allow to workaround the bug …
Since the database backup runs out of memory in your env it’s probably best to disable the Database Backup module.
dwinden
The Security Check module enables the Database Backup module.
However the Database Backup module Schedule Database Backups setting is not enabled by the Security Check module.
Usually Database Backups are only created automatically when the Schedule Database Backups setting is enabled.
It could be a new bug was introduced in the new UI (since 5.4.0) that triggers automatic database backups when only the Database Backup module is enabled.
dwinden
Amen ! Good luck with that 😉
This has been an issue for several years, so the prospect does not look good.
Don’t rely on the (Database) backup feature of this plugin. Instead look for a more reliable backup solution.
dwinden
There are 2 whitelists. A temporary and a permanent whitelist.
If you have successfully logged in once as an administrator from the IP that needs to be locked out, that IP is automatically added to the temporary whitelist for the duration of 24 hours.
Use the following query from phpMyAdmin to check the temporary whitelist:
select * from wp_options where option_name = ‘itsec_temp_whitelist_ip’;
dwinden
Just another thought …
If the website is behind a proxy the proxy server might be changing the user agent …dwinden