Cookie Based/Secret Word Login 403

  • Resolved acephalia

    (@acephalia)


    8 years ago

    Hello

    I am using cookie based brute force protection and even though I enter the correct URL with the secret word I always end up with a 403 Forbidden Error. I also immediately get a user locked out email alert.

    I have to manually go into my .htaccess file and add the ip address to the Allow from rule to get into the admin area pretty much each time I login as I do not have a static ip on my connection.

    I’ve tried to search for any fixes but come up with nothing. I am using the latest version of wordpress and the plugin. Am I missing something simple?

    Thank you.
    D.

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, can you check the plugin log files under Dashboard?

    Thank you

    Plugin Contributor wpsolutions

    (@wpsolutions)

    I have to manually go into my .htaccess file and add the ip address to the Allow from rule to get into the admin area pretty much each time I login as I do not have a static ip on my connection

    Do you have the whitelist feature enabled? If so you should leave that disabled if your IP address changes constantly.

    Thread Starter acephalia

    (@acephalia)

    Thanks for the replies.

    The log files seem to be empty.

    I did notice that if I disable the firewall section entirely it works fine. Not sure if there is any correlation there.

    I do have the whitelist feature enabled. I will try disabling it and giving it a go.

    Please do give me a couple of days to test it and revert back.
    Thank you!

    Thread Starter acephalia

    (@acephalia)

    I’ve tried pretty much every combination of settings with no success. Turning off the Whitelist option completely locks me out and I have to restore the code.

    But on a positive light I guess this does make everything pretty much bulletproof as far as unauthorised access goes.

    One extra step of adding the current IP to the whitelist via htaccess for security isn’t a bad trade off at all.

    Thanks!

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Cookie Based/Secret Word Login 403’ is closed to new replies.

Tags