Did something stupid

  • Ok, i did something stupid and i need some help.

    I installed a security plugin on my site and configured it. Two notable settings i set are change login url and if a “wp-” is put in the url it redirects back to the users own server.

    Just now i went to log-in and the login page looked different. so to check it was a plug-in causing the problem and not a phishing page or whatever, i went to my data base > options table and deleted everything in active_plugins to disable all plugins. so i go back to the site and the login url doesnt work anymore (expected) BUT, the redirect setting still works! so i cant use the default /wp-admin either.

    HELP! im locked out.

    Thanks
    cn

Viewing 15 replies - 1 through 15 (of 24 total)
  • Moderator Jan Dembowski

    (@jdembowski)

    Forum Moderator and Brute Squad

    I installed a security plugin on my site

    Which one? The answer will help determine how to backout those changes.

    Thread Starter cnpau

    (@cnpau)

    The one with the green shield.
    I cant remember the exact name sorry

    Thanks for your time

    Hi @cnpau,

    If you forgot the plugin name then you can directly go to your wp-content/plugins directly(using FTP) and rename the security plugin(which you have installed earlier).
    If you still not able to resolve the issue, then let me know.

    Thread Starter cnpau

    (@cnpau)

    Hi Firoz,

    The only folder i can find is wp-simple-firewall, but im certain the plugin was not called that. i renamed it but it didnt work.

    thanks

    Can you please share all plugin name or either screen shot?

    Thread Starter cnpau

    (@cnpau)

    Would you like most recent?

    Its my first site so i try different things on it so i dont keep it very tidy in the files department and there is a lot of plugins.

    Thread Starter cnpau

    (@cnpau)

    most recent:
    easy-wp-smtp (was deactivated)
    login-page-styler (was deactivated)
    mesmerize-companion (was deactivated)
    remove-dashboard-access-for-non-admins (was deactivated)
    string-locator (was deactivated)
    theme-my-login (was deactivated)
    what-the-file (was deactivated)
    wp-protect-content
    wp-simple-firewall
    wpforo (was deactivated)

    If this is not a live site and you are doing an experiment then try following steps.

    Take the full backup before trying these steps.
    1) rename the plugin directory name (i.e wp-content/plugins >> wp-content/old_plugins)
    2) rename the .htaccess file

    Now try to access wp-admin.

    Thread Starter cnpau

    (@cnpau)

    Yes it is live.
    Its for my mate but i did it for him so i could practice.
    Its currently live and in use.

    • This reply was modified 6 years, 9 months ago by cnpau.
    Thread Starter cnpau

    (@cnpau)

    Firoz you legend! thankyou it worked mate.

    Now do i need a new .htaccess file?
    I renamed it .old_htaccess and a new one hasn’t been made.

    and do i just reinstall plug-ins like normal? or should i copy what plugins i need to a new plugins folder?

    and how does this affect the data from the plug-ins that is still in the database?

    Thankyou for everyones help!

    Glad to hear that your issue is resolved.

    Do the following steps.
    1. Undo the plugin name
    2. Undo the . htaccess (means restore it)
    3. NOW alter the changes which you have done before locked down. That’s it.

    Thread Starter cnpau

    (@cnpau)

    So with the dashboard open, just put everything back the way it was?

    Yes, exactly

    Thread Starter cnpau

    (@cnpau)

    i did and it went back to redirect.

    Thread Starter cnpau

    (@cnpau)

    if i re download wordpress and upload a fresh .htaccess do you think it would work?

Viewing 15 replies - 1 through 15 (of 24 total)
  • The topic ‘Did something stupid’ is closed to new replies.