Jelena
Forum Replies Created
-
Hi,
We’re happy to hear that you love Shield! 🙂
Regarding the problem you’re having, sorry to hear that…
Renaming the login wont affect emails.
Shield never “intercepts” emails or blocks them in any way. It does log them, however, so you should be able to see whether the email for lost passwords are actually be sent using Shield’s Audit Trail.
This is the first thing to check. If they’re not being logged in the Audit Trail, then the actual process of lost password sending is being interrupted.
The next thing then is to assess your email deliverability on your WordPress site – are you using a dedicated and properly configured email system? This is a real problem for many on WordPress due to a lack of understanding around WordPress and emails. Setting up a dedicated email services like Postmark is critical:
https://getshieldsecurity.com/blog/postmark-preferred-transactional-email/Perhaps have a read here as well to see: https://getshieldsecurity.com/blog/wordpress-email-deliverability/
Hope this was helpful for you in some way…
Regards,
Jelena
No problem at all. Happy to help. 🙂
Cheers!
Hi,
Do you have Antibot Detection enabled in the Login Guard?
If yes, please note that this completely removes the need for login form CAPTCHAs, and Shield’s own GASP “I’m a human” checkbox. We’re passively testing a visitor’s status (no direct interaction required from the visitor), and we build their Bot Score and allow or deny the request.
This system is best explained in our release blog posts here:
https://getshieldsecurity.com/blog/wordpress-anti-bot-detection-engine/
So, when you turn this on, GASP and Captcha will be automatically disabled. This means that the Antibot System takes over bot detection.If you don’t want to use Antibot system for login/registration forms, you can disable it and then enable Recaptcha.
https://www.screencast.com/t/EUXJXwtH
Let us know if this was helpful for you.
Thanks,
Jelena
Hi Ivan,
I’m sorry, we provide tech support in English only…
Can I ask you to read this blog post here (#3 part), please:
https://getshieldsecurity.com/blog/wp-shield-security-release-6-10/And also this one:
https://support.getshieldsecurity.com/support/solutions/articles/3000088235Let us know if that was helpful for you.
Thanks and have a nice Sunday.
Jelena
Hi,
Whenever you get locked out as the result of Shield, you can use a forceoff method outlined in this guide here:
https://support.getshieldsecurity.com/support/solutions/articles/3000000959This will keep plugin active allowing you to get back in and change settings (i.e. remove your new created login url).
Regarding the problem you described, are you using page cache plugin/system?
Often caching can cause problems if it’s misconfigured or the cache is stale.
Our suggestion if you’re going to use Caching – if anything ever stops working disable and clear your caches and then check functionality. If it’s working again, try re-enabling your cache.
You can read a bit more about this approach here:
https://onedollarplugin.com/blog/5-golden-rules-wordpress-site-optimisation/As you also mentioned an issue with brute force attempts, maybe this can help:
https://getshieldsecurity.com/blog/shield-wordpress-brute-force-ddos/Also, you may want to read about our Antibot Detection Engine here:
https://getshieldsecurity.com/blog/wordpress-anti-bot-detection-engine/Hope this was helpful for you in some way.
Thanks and have a nice Sunday.
Jelena
Hi,
Sorry to hear about the troubles you’re having.
Can I ask you to activate the web browser console and load the plugin settings page and share with us the errors that are being displayed there, please?
We have a small guide how to do this (please see the 2nd part of the article) here:
https://support.getshieldsecurity.com/support/solutions/articles/3000105650Thanks,
Jelena
Hi,
Just to express our sincere gratitude to you for reporting this problem and for being so very cooperative to help us to investigate it. The extra effort you put into this was really appreciated. We simply cannot thank you enough for that! 🙂
To anyone reading this, know that the problem isn’t caused by Shield. Closing this thread…
Hi ASR Martins,
Sorry to hear about the trouble you’re having with this.
We responded to your support ticket #14624. Please check your inbox when you have a chance.
Many thanks,
Jelena
Thank you so much for this great 5-star review! 🙂
Cheers!
Hi Christoph,
Thanks so much for the update. I’m so very happy to hear that you managed to sort it out and that all is working fine for you now.
About providing help, no problem at all! 🙂 It was pretty much easy to provide solution because you also provided the all problem details we needed. So, thank you also for that. 🙂
Sorry, this is little bit out of the subject, but could I possibly ask you to leave us a review, please? This really helps us, and it’d be hugely appreciated:
https://wordpress.org/support/plugin/wp-simple-firewall/reviews/#new-postRegards and may I also wish you a fantastic day! 🙂
Hi Christoph,
This error suggests that you haven’t added the domain name of your site into your reCAPTCHA dashboard for those particular set of keys. You must specify a list of domains for each set of reCAPTCHA keys. And then, use these keys in Shield.
This is what you can do:
1) Activate Shield and then use a forceoff method to get back into your site. To do this, please follow the steps outlined in this guide here:
https://support.getshieldsecurity.com/support/solutions/articles/3000000959
This will keep plugin active allowing you to get back in and change Recaptcha settings.2) Then, you can go to the General Settings and deactivate Recaptcha by removing Recaptcha keys => save settings.
If you’d like to use Recaptcha, you can resolve the error. In this help article we explain how to configure Recaptcha properly in Shield and how to solve the error you’re getting:
https://support.getshieldsecurity.com/support/solutions/articles/3000072659Hope this helps.
Let us know how you get on.
Thanks.
Jelena
Okay, good to hear that.
Cheers! 🙂
Hi,
Sorry to hear that.
Can you try the following, please:
1) Check your Audit trail to see if Shield is blocking anything
2) Use forceoff method to keep Shield active and retest to see if it still happens.
Let us know how it went.
Thanks.
Hi,
Sorry to hear about the troubles you’re having…
Please understand that Shield isn’t heavy. One of the main Shield’s tenets is performance – as small a processing/memory footprint as possible.
We have settled for 1 or 2 options stored per plugin feature section. This makes options storage and loading more efficient, and it only loads those options that are required depending on the features enabled.
We also make full use of WordPress filters and action hooks to ensure that code is loaded/processed only when it’s required.
May I ask, what tools are you using to measure and which part is slow exactly, please?
Thanks.
Hi,
Thanks for your question.
We’ve added support for WordPress 5.6’s new Application Passwords feature in the latest Shield release 10.1.5.
In this blog post, we explain what it is, whether there are any security risks, and how Shield has been adapted:
https://onedollarplugin.com/blog/wordpress-application-passwordsHope this helps.
Jelena