Same User Logged in 97 Times

  • Resolved dcart87

    (@dcart87)


    4 years, 6 months ago

    Hi, the ‘currently logged in users’ page shows 97 different IPs for my single admin user.

    My actual IP isn’t shown.

    The location of the IPs all route to Frankfurt, Germany (not near me).

    I’m currently using Ezoics nameservers redirected from Siteground.

    I have 2FA on my site and I don’t think that I’ve actually been hacked – is this just a mistake that can be ignored?

    Thanks.

Viewing 7 replies - 1 through 7 (of 7 total)
  • Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi,

    I’m currently using Ezoics nameservers redirected from Siteground.

    I know nothing about the above? How does it work and what is the purpose?

    Also, do you have any of the Brute Force features activated?

    Thank you

    Thread Starter dcart87

    (@dcart87)

    Thanks for the reply.

    Ezoic serves ads on my site – they require you to redirect to their servers.

    I believe that Ezoic uses a CDN – which I think may be causing the issue because when I enable IP lockdown via siteground, it won’t recognize my IP and it kicks me out of the admin panel, yet when I log back in the number of users logged in is still very high (they should all have been kicked out when I locked down the IP).

    The brute force features activated are:

    Rename log in page.
    Login form captcha.
    Lost password captcha.
    Custom login form captcha.
    Honeypot.

    I also notice that the ‘current IP address’ shown on the login white list (not activated) doesn’t match up to my actual IP address.

    Hope some of that helps.

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi,

    I believe that Ezoic uses a CDN – which I think may be causing the issue because when I enable IP lockdown via siteground, it won’t recognize my IP and it kicks me out of the admin panel, yet when I log back in the number of users logged in is still very high (they should all have been kicked out when I locked down the IP).

    Yes, I believe it might be causing this issue. Try the following option, it might help.

    Go to WP Security -> Settings -> Advanced Settings and select HTTP_CF_CONNECTING_IP first. If it does not recognize your IP address then try one of the other options.

    Let me know how you go.

    Thank you

    Thread Starter dcart87

    (@dcart87)

    I tried all of the different settings – my real IP didn’t show and multiple users are being populated.

    Thanks.

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, unfortunately there is not much more I can do from my end. You will have to contact that service and find out what is causing this issue. Let me know what they say, I am curious to know.

    Thank you

    Thread Starter dcart87

    (@dcart87)

    Here’s what they said:

    ‘I believe this is because WP Security is seeing all of Ezoic’s IPs instead of your one origin server IP and thinking this is more user than one’

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi,

    ‘I believe this is because WP Security is seeing all of Ezoic’s IPs instead of your one origin server IP and thinking this is more user than one’

    If that is the case, then you can ignore this for now since all the IP addresses belong to your server.

    Kind regards

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘Same User Logged in 97 Times’ is closed to new replies.