Gerroald
Forum Replies Created
-
Hey Dwinden,
Thanks for the notice on this. As you note, we have addressed these issues in 5.6.1.
Thanks,
Gerroald
Hey Petra,
You can adjust the Notification Email in the Global Settings.
Thanks!
Gerroald
Hi,
Can you please start a ticket for iThemes Sync support?
https://members.ithemes.com/panel/helpdesk.php
Thanks!
Gerroald
Hi,
Did you notice any errors on the site?
Are your settings set for email, local or both? Either way can you see if your path to local backup storage is correct? You’ll need to enable saving them locally the see the option if it’s not already.
If you’ve completely disabled the plugin and you’re still receiving these they’re likely still in the server queue. This will clear itself up.
Thanks,
Gerroald
Hi,
What’s alarming is when you notice how much your site is actually under attack. But it’s really not that unique. The idea is to do what we can to make sure they’re not successful.
If you were getting invalid logins with your username, and you are certain it wasn’t you then it was a brute force attack. If you’ve enabled the Brute Force feature and they meet your lockout criteria the plugin will lock them out. This could result in you being locked out too, but if that’s not the case it’s just fine.
Based on what you’ve mentioned I don’t think you have anything to be concerned about.
Thanks,
Gerroald
Hi,
Unfortunately there was an issue several updates ago with the upgrade routine that affected a portion of users settings. My apologies for this.
Another possibility is you enabled our new Security Check feature which enables all recommended features that know will now conflict with any environments.
As for the report you received, it sounds like you’re under a brute force attack, and they’re using your username. I’d suggest creating a new user, transfer all content to it and delete the old one. If you can’t access your site to do this, then deactivate the plugin via FTP by renaming it’s directory to something like ithemes-security-pro.bak. Once you’re in and made the adjustments you can rename it back to reactivate it.
Thanks,
Gerroald
Hi,
Can you please share the exact nonce error?
Thanks,
Gerroald
Hi,
Are you able to share the contents of your htaccess file?
Thanks,
Gerroald
Hi,
You bet. And happy to hear you found something that works for you.
Thanks,
Gerroald
Hi,
Thanks for the update, and happy to hear it.
Since your IP is dynamic I’d suggest either fixing the 404s, whitelisting the known ones or disabling the feature to prevent this in the future.
Thanks!
Gerroald
Hi,
In the logs and backup settings there’s an option to reset the path. This should do the trick.
Thanks,
Gerroald
Hi,
Thanks for reporting this.
There is a bug report filed for it. And I’ll give it a bump.
Thanks,
Gerroald
Hey Ivan,
This is not currently possible. But I can definitely add it as a feature request!
Thanks,
Gerroald
Hi,
If this happens again the article below will help you get back in.
When you’re in I’d suggest whitelisting your IP to avoid this.
https://ithemes.com/security/fixing-ithemes-security-lockouts/
Thanks,
Gerroald
Hi,
If you disable iThemes Security does the app connect?
Thanks,
Gerroald