Omtesla
Forum Replies Created
-
I will see to integrate on my own, there is a serious concern, one other of my website was hacked into, which I not monitor, they knew the password to my Admin acc.
I try to find out how such is possible and add 2FA, that website also has UM plugin installed.
They uploaded 2 folders, one is a plugin and the other is some code execution, if your team want to look I can send the folders and the IP’s of those who logged in to my admin.
Thanks once again!
Keeping user data on other server is not really a security, each website owner have to keep on it’s own server encrypted so that even he can’t read it.
Also it’s not excluded that each hosting company have it’s own internal AI crawler, and many use Amazonaws, that is why i’m afraid of, so they can crawl our websites internally and one can never achieve security.
IMO
Good to know, for some reason I have seen something in the settings a couple of updates back, I did not proceed with that settings now I regret maybe, because people want confidentiality, the feature Administration should not be there, easy spying on what members write, that is why many are afraid to use our website chat.
Anyway, thank you.- This reply was modified 7 months ago by Omtesla. Reason: addittional wording
I have check in settings > Exclusions but the Administrator is checked to be excluded. Why it still counts me?
Hello
I have solved the issue, this what i did.
Took and deleted the plugin for some days, again spam have begin to come, i decided and installed it back.Only this time i go to settings and uncheck the option Disable Submit Button after this i was able to login without wrong password error.
But still did not tested what have solved the issue, whether it was the reinstalling of the plugin or disabling that option.
Thank You.
I have decided and deleted Wordfence from my website.
I will test my website without the plugin and see how it goes.
Thank you all!
Hello
I still experience the above mentioned issue, I have try all the latest updates, what is wrong i not get?
I even try to rollback Ultimate Member plugin but still same.
Thanks.
- This reply was modified 1 year, 5 months ago by Omtesla.
I have tested to lastest 1.18.5 version but only rollback to 1.17.3 is working, starting with 1.8.0 all versions give Wrong Password when we try to login.
Maybe some conflict with UM plugin.
It would be good to know what updated files and codes were done after 1.17.3 i can have look into them.
Additional info, one of my users have report same issue Wrong Password, so it seems all users were affected not only Admin.
I have tested by uncheck all the 3 boxes in Turnstile settings for UM Login, Registration and Lost Pass but it still was showing Wrong Password when I tried to login, only disabling last version or as I did have Roll back to previous Turnstile version and there was no Wrong Password error, the WP login php was working to login it was not affected.
At the moment I not have the latest Turnstile version installed on my website, because of the Wrong Password error, I did not tested other users I not have their emails and passwords, I also did not test to register at that time but Reset Password email was coming.
Some additional updates, I have roll back to previous version of CloudFlare Turnstile plugin with the help of Rollback plugin and now I feel even the website speed is faster but also the Wrong Password is gone from UM Login Form.
I think we should notify their developers of this conflicting issue in their latest update!
I have solved both problems on my own.
First I have try all the possible things including disabling Cache in CF end and tested other browsers.
The only thing I not try was disabling plugins and trying other themes, so i disabled the CloudFlare Turnstile plugin as per my 6th sense and it solved Wrong Password on UM login, but most weird is that I enabled it only for Registration the CF Turnstile, no other things like Login or Reset Password on UM login form.The second issue I had a filter in functions php that was causing the error when disabling UM plugin, so that was solved also.
Now the question is what they did in their last update of CloudFlare Turnstile that it gives Wrong Password when Admin logins through UM form, did not tested other users this is unknown to me if it would be the same.
Thanks for patience with me, I know i come hard on everyone, but i m tired of this Spying corporations that spy and steal my ideas to implement into their products or services.
- This reply was modified 1 year, 7 months ago by Omtesla.
I have found out that LiteSpeed was slowing down my websites, have removed the plugin on all websites and using through CloudFlare cache.
So the result is one shot 2 rabbits, still those who use LitSpeed will most likely face the same issues.
Thanks.
Try add this in place of custom name to get user nickname from UM, I have asked ChatGPT bot again.
This filter hook is called every time the author name is displayed in Better Messages, and the code above checks if the user has a Ultimate Member nickname. If a nickname is found, it is returned, otherwise the original author name is returned. This way, you can ensure that UM nickname is always used if available.
Author: ChatGPT
// Use UM nickname as Better Messages author name add_filter( 'better_messages_author_name', 'custom_better_messages_author_name', 10, 2 ); function custom_better_messages_author_name( $author_name, $author_id ) { $nickname = um_get_display_name( $author_id ); if ( $nickname ) { return $nickname; } else { return $author_name; } }P.s. in my case I commented out custom name code.