Case Sensitivity issue

  • Slight bug/issue

    User gets their password wrong, and you get an log entry of :-

    Authentication failure for {$username}

    Which hits wordpress-soft and gives them 3 tries to login. (this is good)

    User gets their password wrong while using different capitalisation of their username (users!!!), and you get an log entry of :-

    Authentication attempt for unknown user {$username}

    Which hits wordpress-hard and is an instant ban. (this is bad)

    Any chance of an update to make the if statement case insensitive?

    $msg .= (wp_cache_get($username, ‘userlogins’))
    ? “uthentication failure for {$username}”
    : “uthentication attempt for unknown user {$username}”;

    Thanks…

Viewing 1 replies (of 1 total)
  • Thread Starter Code-Ninja

    (@code-ninja)

    I am temporary getting past it on a site that is causing problems by switching

    $msg .= (wp_cache_get($username, ‘userlogins’))
    with
    $msg .= (wp_cache_get(strtolower($username), ‘userslugs’))

Viewing 1 replies (of 1 total)
  • The topic ‘Case Sensitivity issue’ is closed to new replies.