London WordPress

.

Excellent.

Possibly better to bet on anyway, as this thread has been ignored by Better WP Security.

Some plugins don’t make the maker enough to support them.

So future bugs may also not be fixed.

It is a pain.

Not happening on all sites, but pretty sure it is just breaking sites when a character is added that the server doesn’t like.

As part of blocking a particular threat/event.

Maybe hackers are purposely getting it to bring down sites, so it becomes useless and .htaccess security is turned off.

Shame, but…
Turning of ‘- Menu > Security > Ban Users > Enable Default Banned List’
Stops site dying

Along with turning off ‘- Tweaks > Write to WordPress core files’
To stop the software turning it on again/writing to the the .htaccess file (recon it adds characters the server doesn’t like).

Effected sites have stayed up

Upgrading to the latest version of ‘Better WP Security’ breaks some sites (reverting to previous .htaccess fixes them)

It could be other plugins, as some sites don’t break

Thank you

Better WP Security, adds to .htaccess, after each event.
The last one being the one that broke it.

All those features are off.
But the software puts Ban Users, back on.
Then breaks the site!

Enable Banned Users
IT IS THE banned users feature
‘Ban Hosts’ bit

AND IF YOU UNCHECK THE BOX, IT IS FINE BUT…
THE PLUGIN RE-CHECKS (enables) IT!
breaking the site again!

EG BELOW

# BEGIN Better WP Security
Order Allow,Deny
Deny from env=DenyAccess
Allow from all
SetEnvIF REMOTE_ADDR “^95\.62\.197\.135$” DenyAccess
SetEnvIF X-FORWARDED-FOR “^95\.62\.197\.135$” DenyAccess
SetEnvIF X-CLUSTER-CLIENT-IP “^95\.62\.197\.135$” DenyAccess
# END Better WP Security

It broke more sites today.

Turning off the ‘ban’ items, might stop it breaking sites.
Note: it breaks the site again, when turning them off!
(changes .htaccess causing a “Internal Server Error”)

But hopefully for the last time

Shame the plugin maker isn’t joining in, but cannot suggest others on their forum.

Thanks for the help.

On our side… no
“Write to WordPress core files” option not changed.

The problem is sudden and without changes/interaction, our end.
It appears to be the site reacting to an login/hacking attempt.
It has not happened since a couple of days ago (on 2 different sites)

Not using HackRepair.com’s blacklist may be a fix.
But it works on others, fine.

Yes. It brings whole site/software down.
htaccess causes “Internal Server Error”.

No-one has replied.
It’s only on a few sites with no obvious connection.
So removing the plugin.

Not sure WordPress & plugins can be risked on important sites, any longer.
Industries support appears to be dropping.

No captcha plugin being maintained.
Lots of others being abandoned.
Hackers constantly attacking it.

Many thanks to all, for advising.

This clients site uses a shared hosting environment, the biggest in Europe. Which works fine with WordPress.

If it blocks something to do with Twitters new feed, then it isn’t going to change it for anybody. So it cannot be overcome.

We will just post information directly on sites and use Twitter less.
As they may just stop promoting themselves completely, in the future, anyway.

If they don’t want sites to show Tweets as easily or actively, as before ??

Which is their choice.

Thanks to all again.

Us too.

This is too much hard work, for the return!

Been trying to add Twitter feed to a WordPress template for too long.
Not economically viable to bother any longer.

It’s almost that Twitter do not want websites to promote their usage.
But sure the site can do without Twitter, anyway.
If they want to make it so hard to use feeds.
(similar to a shop caging all products in steel and strip searching customers, to stop shop lifters!)
So will give up.