Behind reverse proxy

I also have problems with the reverse proxy setup. The plugin thinks that all the login attempts are coming from the same IP – the reverse proxy. Therefore I cannot access my site control panel because the constant brute-force login attempts.

Would you be so kind to review this piece of code please?

Hello @jadjay, i don’t understand where to put your code in file plugin.php.

What is the function ?
Is it a replacement or an addition ?

Thks for you reply and hope it will fix officialy in the plugin.

Hello @bnbc,

You need to learn how to use diff

• https://en.wikipedia.org/wiki/Diff
• https://pubs.opengroup.org/onlinepubs/9699919799/utilities/diff.html

Lines 1017 to 1024

As this plugin isn’t updated, the lines are corrects.

Ok @bnbc I’ll help you

$ cat > ~/patch <<EOF
1017a1018
>               /*
1019a1021,1024
>               }
>                */
>               if ( isset( $_SERVER[$this->get_option( 'wps_limit_login_client_type' )] ) ) {
>                       return $_SERVER[$this->get_option( 'wps_limit_login_client_type' )];
EOF

then cd to your root directory

$ cp wp-content/plugins/wps-limit-login/classes/plugin.php wp-content/plugins/wps-limit-login/classes/plugin.php_orig # save the original file for security
$ patch wp-content/plugins/wps-limit-login/classes/plugin.php ~/patch

That’s done.