49jili casino games download apk.Makakuha ng libreng 700pho sa bawat deposito

Time-out after 2FA-Setup

hami07 — Fri, 22 Nov 2024 14:39:23 +0000

Hallo!
I just started using the “Solid Security”-Plugin and encountered a problem with my site…
After configuring it, I logged out and wanted to setup 2FA for my user, but when trying either an app or email it registeres it, I get a code and as soon as I put this into my site for the loggin my IP is getting temporarily blocked and I get an error for timeout.

I was stilled logged in with another device on another IP I looked into the dashboard for any blockes, but there were none – even in the database itself I could find any entries within the related tables.

After some time the timeout from my site resolves, but I have to deactivate the plugin via FTP, so I can surpass the MFA-setup…

Has anyone else had similar problems and could resolve them or has any idea what could trigger this phenomenon?

Vulnerability CVE-2024-10924

Koniuszko — Tue, 19 Nov 2024 06:40:30 +0000

Hello, is there any fix or I have to change to other plugin?

Regards.

Unable to login to wpstaging

kjwhe6 — Mon, 18 Nov 2024 15:47:20 +0000

Hello – We are trying to use the WPstaging to update our website. We have cloned the site but we are unable to open the staged site and get the error: Cannot log in because WordFence 2FA authentication module is detected, but it does not work properly with the WP STAGING login form. Error message: undefined

We can disable 2FA but not remove it.

two-factor authentication not activate

ctraderguru — Tue, 12 Nov 2024 11:04:47 +0000

Failure to enable two-factor authentication

Admin Access but no GiveWp Access

BrentwGraham — Mon, 11 Nov 2024 19:51:13 +0000

Hello,

I am an admin for a wordpress website using the givewp plugin but I’m seeing an issue with 2fa login with my givewp account. I have access to the WP. How can I go about tracking down and reconnecting our givewp account with only our WP access? Any help appreciated.

2FA verification code not sent by email

Borja Montoto — Mon, 11 Nov 2024 15:04:31 +0000

Hi, I cannot access my WordPress admin page because I do not receive in the email associated with my account the AIOS 2FA verification code that is needed to log in.

I have checked that the email with the 2FA verification code is not in the spam folder. I have also tried some of the suggestions/solving methods that I have found in the Internet regarding how to deactivate the AIOS plugin but I have not been able to do it.

I am not an IT guy or a WordPress expert, just a WordPress website DIY user from Spain that tries to do the managing of his business website on his own.

Please I need help with this as I am desperate.

Thank you very much in advance,

Borja

WordFence 2FA and JWT Tokens Plugins

Andrei Thomaz — Sun, 10 Nov 2024 14:17:56 +0000

I created some custom REST API endpoints on a WordPress website to deliver data that should not be public, so I set them to require an authenticated user. At the same time, I installed and activated the JWT Authentication for WP REST API plugin, allowing the application accessing these endpoints to use JWT tokens. The problem was my user having 2FA enabled (this website uses WordFence 2FA feature), which blocked the token generation request. WordFence has a setting to ignore the use of 2FA in XML-RPC requests, but not for the REST API, so I had to add three lines of code to modules/login-security/classes/controller/wordfencels.php, starting at line 556:

if (defined(‘REST_REQUEST’) && REST_REQUEST) {
return $user;
}

It would be helpful to have a similar setting for the REST API as the one available for XML-RPC.

cleantalk not permitting me sign in to my website

alecthegreat — Tue, 05 Nov 2024 04:13:01 +0000

I tried to sign into my website using my admin username and password, but I was prompted for the CleanTalk authentication code that was supposed to be sent to my email. However, I never received it, not even in my spam folder. I’ve attempted to log in several times over the past 9 hours, and each time, it asks for the code, but it’s not arriving. I’m starting to regret using CleanTalk services, as being locked out of my website is frustrating. I urgently need a solution to this issue.

Login Security Options – you’re not allowed to access

nmpribeiro — Mon, 04 Nov 2024 22:14:14 +0000

Hi. I am trying to access the Login Security Options page after clicking the “Login Security Options” button. I get redirected to “/wp-admin/admin.php?page=WFLS#top#settings”, however, it displays “Sorry, you are not allowed to access this page.”.

I have my personal website with this plugin and in there i have 2FA set. I’d like to do that now on my new website, where I’ve just added this plugin. What may be the issue? Was this removed from newer WordFence versions?

Improvements over Login

nar98234 — Wed, 23 Oct 2024 11:22:20 +0000

I use ASE from the first release for all websites. Kudos, great work!

First, could you please tell me how I can delete failed login attempts? There is almost 800 entries in 4 months.

[Request@LLA] Maybe improve as;

Login attempts: After this number of failed login attempts the user and IP address will be temporarily blocked. // xx attempts

Interval: If the number of failed login attempts is exceeded within this timeframe, the IP address and user will be blocked. // xx min.
Lockout duration: The user and IP address will be temporarily unable to log in for the specified duration. // xx min.
Trigger captcha on failed login attempts, -or always- as you know, Cloudflare Turnstile is a free CAPTCHA replacement.

Region/County/City: If admin is only intended for users to login from specific geographical regions, you can entirely prevent logins from certain continents or countries.
Event Log: It can alert the administrator by e-mail after a certain threshold for successful logins or failed login attempts.

Request@{Two-Factor Authentication}

Two-Factor authentication allows users to login using a second authentication method, other than their e-mail address and password. It is one of the most powerful ways to prevent account theft. You know.

Authenticator App (TOTP) TOTP requires users to authenticate using a third-party app such as Google Authenticator. I’d like to see this feature.

I don’t prefer e-mail 2FA because e-mail verification sends a verification code to the user’s email address. This method provides protection against leaked or weak passwords, though it is less secure than other 2FA methods. If a user’s email inbox is compromised, one could still get access to the user account.