login problems

  • Resolved flyfisher842

    (@flyfisher842)


    5 years, 9 months ago

    when I set up a user with admin priviledges to come and debug my site, I register the user and test the login. BPS logs the debug user name and my ip address in the bps security table. Even if I delete my test login along with my ip address, when the debug user tries to login, they get the 403 error because somewhere my ip address is still associated with the debug user.

    How do I fix this?

    • This topic was modified 5 years, 9 months ago by flyfisher842.
Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author AITpro

    (@aitpro)

    My guess would be that you are using IP address protection htaccess code for your Login page. Maybe you are using this IP address Login page protection htaccess code here > https://forum.ait-pro.com/forums/topic/protect-login-page-from-brute-force-login-attacks/

    Thread Starter flyfisher842

    (@flyfisher842)

    yes I am using ip access to the wp-login.php page. I am the only admin so keep it under control that way. The member login on a member login form generated by profile builder plugin. I have a test memeber set up and do not have any problems with logging in or logging out from the logout link on the member login form. Or from the custom logout link using the wp-logout.php I have set up in the menu.

    But another member tonight had the 403 forbidden with their ip address show when they logged out. The 403 shows the ip and then says the site is experiencing technical difficulites.

    The profile builder is the access control, the login form and registration form generator. I do not want to have to find another plugin to do this or to find a different security plugin I have not tested.

    Could the ISL and the ACF settings have anything to do with this issue?

    website is https://www.hpd-fff.com/

    Never mind I answered my own question. Regardless of what login I use, my ip does not change so of course I would not have a problem. Duh!

    Will have to look at your brute force code more and find the right one to use. I think it is the http type one but not sure.

    Yes when I removed my ip from the login code I of course got the 403 on logout. Not on login. None of the members get this on the login only on logout.

    • This reply was modified 5 years, 9 months ago by flyfisher842.
    • This reply was modified 5 years, 9 months ago by flyfisher842.
    • This reply was modified 5 years, 9 months ago by flyfisher842.
    • This reply was modified 5 years, 9 months ago by flyfisher842.
    Plugin Author AITpro

    (@aitpro)

    I still don’t know if BPS is causing this problem or not. You can do standard BPS troubleshooting steps > https://forum.ait-pro.com/forums/topic/read-me-first-free/#bps-free-general-troubleshooting to confirm or eliminate, which feature is causing a problem. You can install and use the Tor Browser to test logging into your website with a different IP address. You can post a BPS Security Log entry that is relevant to the issue.

    Thread Starter flyfisher842

    (@flyfisher842)

    I removed my ip from the login protection block and got the same logout error as the others so that was the problem IMO. Switched to the http protocol one and it does not cause any problems at least so far. Interesting that the 403 only occurred on logout and not on login.

    I am marking this as resolved. If it reoccurs will open a new thread.

    Thanks for the help on this issue.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘login problems’ is closed to new replies.