lock out of my own site

Hey,

I’m afraid I have no idea what’s going on here. If this plugin was messing up people’s legitimate logins with correct username and passwords, then I’d be in whole world of trouble.

The code that handles user sessions and logins remains unchanged for a long time. It’s highly stable and mature.

If you want to pursue with this plugin, I can help, but until we find the underlying cause, there is nothing for me to fix.

If you have any plugin that modifies or affects or analyses or looks at the WordPress login process, then please deactivate it.

Then reset your password to something very simple that you can type without making any mistakes.

Then use the ‘forceoff’ system outlined here (https://icontrolwp.freshdesk.com/support/solutions/articles/3000000959 ), ensuring that when you reactivate this plugin it won’t lock you out.

With this plugin active, click ip manager. Click the button to manage the black list and remove your IP address from the list.

Delete the forceoff file.

Open another browser… i.e. If you were using Chrome, open up Firefox. Now try to login to your site on the other browser using your new password. If you’re copying and pasting, please verify it’s pasting the correct password.

If you logged in successfully, then this plugin is not broken. It is important that you disable any other plugins that affect your wordpress login while you perform this test.

Thanks

got the same issue, installed the plugin and about 30 mins later tried to login

Login is protected by 2-factor authentication. If your login details were correct, you will have received an email to complete the login process.

suspect the plugin has issues, can see me having to ftp and erase your plugin sometime on sunday

—-
Two-Factor Login Verification for https://www.steveliddle.net
Inbox
x

Steve Liddle's Photo and Wine Receipes :: WordPress Simple Firewall via ector.myhost.net
00:54 (0 minutes ago)

to me
You, or someone pretending to be you, just attempted to login into your WordPress site.
The IP Address / Cookie from which they tried to login is not currently verified.
Click the following link to validate and complete the login process. You will be logged in automatically upon successful authentication.

get the same reply

yes the plugin might be perfect, but if it worked, I would not be looking for ways to get baCK AS ADMIN

will try the above soon or wipe the lot

Hi,

Nobody is saying the plugin is perfect.

I’m saying that to ascertain whether the plugin is at fault it needs to be identified as such. The WordPress plugin ecosystem is frankly a mess and it’s impossible to simply state it’s 1 particular plugin or another. It’s a matter of determining where the error lies, getting a handle on it, and if I can fix it, I’ll certainly do my very best.

If we can’t find the problem and you feel you must remove the plugin completely, I respect that decision. But unless you find the underlying problem, you may have other plugins installed that could and will interfere with any other plugin that run a login-protection system.

The problem you experienced doesn’t sound like he same as the original poster… they’re quite different.

You never mentioned what happens exactly when you click the authentication link? What errors/messages/anything do you experience?

It’s very possible there’s a bug, or there is collision with other plugins that use the login filters. We need to rule outside influence out. It would be worth knowing what all your plugins are and if you’re running any other security plugins – which is very common.

Thanks.

I am having the plugin on a few websites (a “large” few :-)), and it runs just fine (after a the few preliminary IP manager hiccups of course).
Just saying ??

Unless I hear back from you, I’ll mark this ticket as resolved.
Thanks.

Yes, please close the ticket. I have removed the plugin and will not be reinstalling.

Cool, perfect. Thanks for getting back!