Brute Force Attack WP Release Admin

  • A website of someone I know was locked out of the WP admin area because of the Brute Force attack. They are using GoDaddy for hosting. GoDaddy said yesterday that they blocked the admin area from logging in. Now they are saying that that it is “up to WordPress to release our admin.”

    They haven’t updated WP in ages and are using an old version. I’m not exactly sure which version.

    Does anyone have any idea what this even means and how to get WP to release admin? It doesn’t make any sense to me.

    Thank you!

Viewing 7 replies - 1 through 7 (of 7 total)

  • There is absolutely nothing we can do in this situation. This is not a WordPress issue but a hosting one. If Goddaddy have locked you of of WordPress until it is updated, then you’ll have to bite the bullet and update WordPress manually. See Upgrading_WordPress_Extended for the full details of how to do this for older versions of WordPress.

    Once the site is running the latest version of WordPress, you will need to go back to Godaddy and ask them to remove the lock,

    Thread Starter Elizabeth Crane

    (@eslucky)

    Thanks so much for the quick reply. I think they need to contact GoDaddy again. They seem a little misinformed. If GD can unlock the admin area the update would be so much easier for them from there.

    Thank you!

    No, no, no! Do not even attempt to update WordPress using the 1-click updates if the current version is older than 3.3! There is a strong possibility that the database could be irreparably damaged by such a large upgrade – necessitating a complete database restore.

    With older versions of WordPress, you must follow the relevant instructions in Upgrading_WordPress_Extended.

    Thread Starter Elizabeth Crane

    (@eslucky)

    Wow! Thanks for that info. Very good to know.

    It looks now to me that they are probably using the most recent WP version. I found this in the source code

    <meta name="generator" content="WordPress 3.5.1" />

    In that case, I’d suggest speaking to Godaddy about the lockout.

    Thread Starter Elizabeth Crane

    (@eslucky)

    I just spent an hour on the phone with them for him. They don’t really have an answer for it. Now I’ve found out that in moving the site recently from one hosting account to another there are multiple plugin errors and that it are probably not letting him login along with the Brute Force attack! Yikes!

    Try resetting the plugins folder by FTP or phpMyAdmin.

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘Brute Force Attack WP Release Admin’ is closed to new replies.