I had to return to version 5.0.7 as most of my users were getting locked out with a 403 forbidden error. I don’t know why some users and not others were being locked out.

I tested this on my Staging site and the test users I logged in as did not encounter the problem. But I had several people contact me to tell me they could not log in. When I returned to 5.0.7 then they were able to log in.

I checked their user membership and profiles. They were classified as Member/Subscribers and all have the Member profile type.

My staging site and my LIVE site are now both on 5.0.7. If you need access to my staging site, please let me know and I will send credentials.

NoN Universe Administrator

Hello, I’ve been adding IP addresses to the Blacklist for over a year. There are tons of them.

I would like to be able to import/export them to the Permanent Block List and remove them from my Blacklist. This way my .htaccess file isn’t so huge and if I change hosts, I don’t have to worry about whether their servers support .htaccess files.

Unfortunately, I must add the IP addresses one at a time and this is not only time consuming but prone to errors (forgetting some).

I would also like the ability to ADD TO Permanent Block List from the 404 Detection page.

Is this possible? Are there any disadvantages of moving my Blacklist to the Permanent Block List? For example, any performance issues?

Thank you for reading this and replying.

Your plugin is awesome, congratulations.

I have enabled the copy protection (no right click, no copy)

It works perfectly on PC, but it doesn’t work on mobile devices.

Is it a way to make it work also on mobile? (maybe a piece of custom code to add)

Thank you,
Regards

We have been using the plugin on our wordpress website for about a month now but it turns out we cannot properly use the Blacklist Manager or the Lockdown feature because we are hosting the website on getflywheel. As per getflywheel, “No we do not support . htaccess files. Flywheel runs the Nginx web server, which does not utilize . htaccess files (which is one of the things that makes it so fast).”

We would like to continue using this plugin but with the htaccess files or at least a solution where we can get the full feature of the plugin. We currently cannot get the full use of the plugin. Do you have a workaround or a way to allow nginx to allow this plugin to work? Please advise

Are these plugins compatible with each other?
Is there a trick to make them work together?

If these plugins can’t work together, is it better to use another security plugin or another contact form plugin?

I have:
– All In One WP Security version 4.4.9
– Contact Form 7 version 5.4.2
– WordPress version: 5.8.1

“blocked by firewall for Known malicious User-Agents at https://www.greatribulation.com/wp-login.php”

Venezuela was blocked by firewall for Known malicious User-Agents at https://www.greatribulation.com/wp-login.php
7/20/2021 10:41:44 AM (12 hours 17 mins ago)  
IP: 181.225.42.242 Hostname: 181-225-42-242.ifxnw.com.ve
Human/Bot: Human
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)

So my question I am guessing this is just a clash in security. I did not know websites would mix up like that though. Does that mean the WF is blocking for the entire server? Is that why it listed greatribulation in jazweeh live traffic? What do you guys think I should do? Also I want a free/reliable or cheap “live traffic” plugin WF doesn’t seem to be working like it used to.

Fatal error: Cannot redeclare retrieve_password() (previously declared in /home/www/proto/wp-includes/user.php:2671) in /home/www/proto/wp-content/plugins/all-in-one-wp-security-and-firewall/other-includes/wp-security-rename-login-feature.php on line 359

Deleting the function retrieve_password() in wp-security-rename-login-feature.php resolves the problem.

I am planning to launch my local news digital magazine next month. I have been going through some research , but for being a basic user I have stumbled upon this issue.

I was planning to go with your free plugin for my website but I was wondering should I use another security free plugin like Sucuri/wordfence/Defender, to have the all kind of security measures activated :/ Will that be a good move for me?

Another question is will my website speed be harmed greatly for using “All in one WP Security & Firewall” and another security plugin together if I need to?

I have no coding skill. It would mean a lot if you could give me a suggestion.

Thank you

With a new local IP I’ve been unable to access mywebsite/myownadmin. To get around this I disabled the All In One WP Security & Firewall plugin by renaming its folder through cpanel filemanager. This disabled the plug in and allowed login via mywebsite/wp-admin.

However, while the WP admin page was open, when I reverted the name of the All In One WP Security & Firewall back to its correct name the page reverted back mywebsite/myownadmin and was blocked.

I also tried removing the plugin by erasing it entirely using cpanel filemanager and then doing a new fresh install of the plugin uploaded from the All In One WP Security & Firewall site. I was allowed to install it, BUT once it was activated the login url again switched from mywebsite/wp-admin to mywebsite/myownadmin and the admin page became inaccessible.

In other words whenever the All In One WP Security & Firewall plugin is active my WP admin reverts such that the page can’t be accessed. This also means that plugin settings can’t be reconfigured with a the new local IP and/or disable that feature from within the plugin.