Jelena
Forum Replies Created
-
Thanks a bunch for this awesome review. We’re thrilled you found our Shield Security useful and had a great experience with us. If you ever need a hand, rest assured, we’ve got your back.
Stay safe and secure… 🙂
No problem, always happy to help! 🙂
Hi,
Thanks so much for keeping us updated all the time and for your feedback on 2FA. This is highly appreciated.
I’m glad to hear that you were able to narrow down the initial problem.
Using multiple WordPress security plugins may have unpredictable results. This is because 1 WordPress plugin doesn’t have inherent understanding of what another plugin does. So when 1 feature from 1 plugin doesn’t seem to work well with another related feature of another plugin, this is perfectly normal.
When it’s about temp disabling Shield, the easiest way is using the “forceoff” method outlined here. So, any time you get locked out of your own site as the result of Shield, for any reason, instead of renaming the plugin folder, you can forceoff. When forceoff, the plugin itself will be active but none of the security/blocking options will be enforced – Shield can’t block anything. This will allow you to regain access to your site and troubleshoot.
Regarding deleting plugin settings option (under General Settings > Plugin Defaults), this will work upon plugin deactivation only. Once you enable this option, you’ll need to go to the Plugins page of your site and click to deactivate > activate Shield Security plugin. All previous settings will be deleted (cleaned out) and revert to defaults.
As for the Shield’s 2FA, there are x3 options that are available in Free version:
1) 2FA by email
2) Google Authentication
3) Yubikey
So, if you prefer using Google Authenticator app over 2FA by email, you may enable this option in Shield settings and set it up for your user account.
You also have the ability to specify pages available to users to configure 2FA on their account.Sincerely hope that you find this helpful…
Thanks.
Jelena
Hi,
Sorry to hear that…
We have a new release 18.4.2 ready (due to out today). There are performance improvements and bug fixes in this release. This should solve the issue you’re facing.
Hi,
You’re seeing this notice because the Live Traffic option (Pro-only) isn’t enabled in settings.
The live traffic logs viewer is a trimmed-down, simplified view on the traffic log. This view is useful regardless of whether or not the live traffic option is enabled. It displays the logs in a simply, standardised format, and when the “Live Traffic” option is enabled in settings, viewer will automatically update the log display on-screen every 7 seconds. You can use it in full. However, if the option is disabled in settings, live traffic viewer is still available but you may not see many updates. You can’t use it in full.
We go into further details on this here.
Hope this helps.
Regards,
Jelena
Hi,
Sorry to hear that…
First things first… ensure the site works as expected without caching. Caching should be the last thing enabled, and the first thing turned-off when there are problems.
Always disable page caching when you’re seeing strange behaviour and test. For a bit more background on that:
https://getshieldsecurity.com/blog/5-golden-rules-wordpress-site-optimisation/Also, just in case… please go to Shield > Config > General > IP Source and review this option.
It will list all the available sources for IP addresses and what the currently detected IP address is for that “source”. You can look up what your IP address is here:
https://getshieldsecurity.com/my-ip/
and use this to inform you for which source is required for your host. The ideal, and default, is REMOTE_ADDR, but many hosts aren’t configured correctly so Shield must try and detect the correct one.Additionally, when your IP is blocked, Activity Log will document the full reasons behind this decision. So if you go into there and see the steps that led to it, you can then simply tweak the Shield settings to ensure it never happens again.
Hope this helps.
Hi,
Thanks so much for reporting this.
We are sorry but, despite of our willingness to find a solution for this, I’m afraid that we can’t do much… This is the same as this report here:
https://wordpress.org/support/topic/conflict-with-wp-rss-agregator-after-update-to-18-2-18/Hope you find this helpful in some way…
Jelena
Hi,
Glad to know that our initial response has addressed your concerns.
Thanks so much for considering our perspective and willingness to update your rating.
Your dedication to security and your thoughtful approach to it is truly impressive. After all, we’re all in this together, working to make sure all our WordPress users stay safe and secure. If you ever need anything else or want to share more insights, please feel free to reach out.
Cheers to a safer WordPress journey!Hi,
Thanks so much for taking the time to share your thoughts.While we do value our branding, we also respect Shield members’ need for discretion. Our White Label feature already addresses this by allowing you to remove our branding from the all Shield’s access restricted (blocking) pages. This ensures a seamless experience for your visitors without revealing the security plugin being used and won’t associate it with WordPress.
We respect your viewpoint on not displaying the duration of blockage. However, based on our continued communication with Shield members, we can tell that they often appreciate knowing how long they may need to wait before accessing a site again. In situations where their site visitors might be concerned about their access, having an estimated timeframe can alleviate uncertainties.
As for unblocking users/visitors in general, there’s an automatic-unblock feature in Shield that allows them to unblock without contacting site admins.
As for blocking pages customisation, we’d like to inform you that we already have plans in motion to introduce an option to address this (including the ability to remove blocking duration). This enhancement is on our roadmap for future releases, and we believe it will provide Shield members with the flexibility to tailor the access restricted pages to align with their site’s branding and communication preferences.
Lastly, we’d appreciate if you could consider the possibility of adjusting your rating to more accurately reflect the value of our response. Your feedback highlights areas for improvement, and your revised rating would better represent the impact of your suggestions and the feature we already have.
Thanks once again for your feedback and valuable contribution to the Shield Security community! 🙂Have you tried to clear or disable browser cache and see how that works?
Hi,
Please understand that we can’t control security settings on your site nor having access to it to unblock your IP.
We have plenty of ways (options) for unblocking IP. You may try this guide here, for example:
https://help.getshieldsecurity.com/article/119-im-blocked-blacklisted-by-the-shield-how-to-unblock-and-prevent-thisAlso, due to security reasons, it’s not a good idea to share your username in public. You can remove it from your post.
Hope this helps.
Jelena
Okay, great! Thanks. 🙂
Please allow me to clarify this little bit for you.
The email validation checks were always intended to be a premium feature available in the pro version of the Shield. There was never a functionality in the free version that performed these email checks.With the latest update, we made some changes to the user interface to avoid confusion between the free and pro versions. In the previous release, the setting for email validation checks was disabled but labeled as “Activity Log Only,” and users could see/select the list of Email Validation Checks options even though they were only available in the pro version. This led to some misunderstanding among users, as it appeared that the feature might be accessible in the free version.
To address this confusion, we decided to make the user interface more straightforward. In the latest update, instead of displaying disabled “Activity Log Only” for the email validation checks, we now clearly indicate “Disabled” for the free version. Additionally, we disabled the Email Validation Checks options list entirely for the free version, so there is no confusion about its availability.
It’s important to note that regardless of the version (free or pro), user registrations are logged in the Activity Log in both releases. The change only affected the visibility and access to the email validation checks options for free users.
Hi,
This is because you are blocking your own IP.
When you manually block your own IP, instead of permanent block, Shield will apply automatic blocking rules on it, trying to prevent accidentally permanently blocking yourself.
If you try to manually block any other IP, you’ll see that it’s permanently blocked instantly.
Hope this helps.
Hi,
Can you just let us know what’s the name of the feature you’re referring to, please? What exactly have been removed?
Thanks.
Thanks for bringing this to our attention.
The decision to open the Recent Activity log in a new window was made to provide a more user-friendly experience. By opening it separately, Shield members can conveniently review their recent activities without interrupting their current browsing session.
This approach aims to improve user workflow, allowing easy access to detailed activity information.