I am getting this PHP error on my login screen.
Warning: session_destroy(): Trying to destroy uninitialized session in /home/public/wp-content/plugins/chap-secure-login/chapsecurelogin.php on line 85
Deactivating and Reactivating the plugin does not help.
Please help.
]]>Hi Team,
My password along with Hash value does not get validated and I get error of Invalid username or password.
Can any one suggest where could be error because the same plugin works well in my other site.
Thanks in advance.
]]>Just noticed that having Chap Secure Password Login activated prevents logins from working on WooCommerce My Account page (/my-account/). Says password incorrect. As soon as I disable Chap Secure Password Login, login form works. Tried with multiple users. Any way to fix?
]]>Love this plugin been using it for a long time.
It would seem the chap-secure-login does not like wp-minify-fix
So I had to exclude sha256.js & md5.js from wp-minify-fix.
Also why not beef up this plugin?
maybe do sha-512 or a Salted sha-512 ???
If that’s too hard then do Salted sha-256 just something to keep up with the times.
I don’t want to spend $ on SSL right now so this is the next best thing.
I just wish it was better.
Does this method use a unique token as a salt to decrease the likelihood of 3rd-party replay attack?
]]>Why are we loading 2 javascript files
there is
/wp-content/plugins/chap-secure-login/js/sha256.js you say this plugin is chap sha256
So why are we loading this as well /wp-content/plugins/chap-secure-login/js/md5.js
what’s the deal with the md5.js????
if it’s doing nothing then why not remove it??
]]>I was getting an error in my php errors (strict error) about the session_start being called again, when it was already called.
Fixed it by changing line 31 of file chap-secure-login/chapsecurelogin.php from
session_start();
== to ==
if ( !session_id() )
session_start();
please help, i cannot login to wordpress after installing chap plugin
]]>I used this plugin successfully for some time but it seems to be incompatible with WP 3.8.1. When clicking on the login link from my site I get a 404 error, login page can’t be found. When I disable the plugin the problem goes away.
]]>(NSFW)
Hi Enrico,
Thanks for you plugin that offers more security.
In my case on the very first attempt when I logged out after that I am not able to login again.
This persists even after deleting the plugin.
Kindly guide me.
Ashok Koparday
]]>Encrypting the username would help in security.
]]>If login is enabled under Wordfence options, then Chap does not work as an invalid password occurs.
]]>Not sure if this is purely a conflict with the plugin Profile Builder, but it didn’t used to be. They used to work fine together, but when I updated both to their latest versions, the login area stopped working, always saying the username/password was incorrect. Worked fine when I disabled Chap, so I just have it disabled now.
]]>Hi,
as soon as I enable my this plugin, my dashboard gets extremely slow. e.g. it takes 20 seconds to load the plugins tab.
first i thought it was an IPv6 issue, but then I disabled IPv6 and the same issue. so it might be something else. any way how i can debug this?
BR,
Peter
Need Help!
I′ve installed chap secure plugin on wordpress 3.4.1
Now it′s blocking all login attempts not just the first time.
Even after deleting the plugin from wp-content the same issue.
I′m no more able to access my wp-admin dashboard.
Please help!
]]>This is a big irritation for me and clients…..
Is there a way to prevent this from happening?
Thank you
Also, your security Icon on the login, could it pop-up a thick box simply giving basic info explaining that the Login is actually secure, yadda yadda???
]]>