Shawn33

Never mind. I was able to reset the plugin by creating a new user, re-activating, then de-activating the plugin. I can now login again with my main admin account. I have disabled the feature to log out user and require password change to avoid this issue in the future. If anyone else encounters this problem, you can fix it by doing what I did above.

I was able to get in by resetting my password via phpmyadmin and deleting the plugin folder. I also deleted the database table that contains failed login attempts. Is there any other database info that this plugin would usually delete upon un-installing? Thanks

I happened to browse the last support topic and found this:

“BPS already has/uses the standard WordPress htaccess code (the same code that W3TC is complaining is not there). It is incorporated into the standard BPS root htaccess file code, but is in a different format so W3TC does not see it. You can just remove/delete the default WordPress Rewrite htaccess code and dismiss/hide the W3TC displayed message.”

Does that apply to the error I’m getting from WP Super Cache as well and I should just ignore it?

Thanks.

Thanks for the tip on how to disable it. It works for me the way it’s supposed to, but I just prefer the old style. I find myself having to scroll a lot more with the new setting, so I’m not sure what it’s for. I have a large monitor I work off of though, maybe it makes more sense for a smaller screen or mobile.

I just realized this error is produced when I run the P3 Plugin Profiler scan, if that helps determine the issue.

Hey Rolf, thanks for the reply and the insight. It does look like all the wp_postmeta rows have a post id that corresponds to a post id also found in wp_posts. So I guess everything looks good then.

I think what confused me is that I only have 40 posts but the wp_posts table actually has over 400 rows. I didn’t realize all my media uploads are also contained there as well.

Thanks again for the help,

Shawn

Well, that’s pretty amazing that BPS Pro provides protection from people hacking into the site via FTP. I didn’t think any plugin would be able to counter attacks that weren’t coming against WordPress itself, especially when they already have your FTP login.

I think I’ll probably end up just switching over in a few days. My main concern was that I get very busy and don’t always have a whole day to try to setup and troubleshoot a new plugin, especially one who’s functions are 99% outside my understanding.

But knowing that there is great support there to assist should be enough.

Thanks again for the help. You Rock!

This is false information. I just went through the last 15 support topics to see if this was the case and every one had replies from the plugin author…but maybe they’ve stepped up their support recently.

I’m currently having the same problem with Host Gator. They said there is a worldwide brute force attack happening right now and everyone is working on a solution. Seems pretty bad…

Hi Ajay,

Yes, switching to iframe did alleviate the problem. Just out of curiosity, what is the difference between using the timthumb feature and leaving it off?

Thanks.

Thanks for the tip Ajay. I think I’ll try switching to the iframe version too.

I just made the jump from Login Lock which is similar to Login Lockdown. I was hesitant at first because this is a fairly new plugin, but in this case it was well worth the risk.

I have tested every feature of this plugin and they all work perfectly on my site. The absolute best feature, that I haven’t seen on any competing plugins, is that it will actually immediately boot out an attacker if they do manage to break into your site and require the user they forged to reset their password.

The parameters for this feature, and every other feature, are completely customizable too. So you can set the plugin to only activate this feature when someone successfully logs in who has previously failed X times in X minutes.

The settings page isn’t fancy, but it’s efficient and easy to understand.

This seems to be the best plugin of its kind at this point, and with a responsive developer and regular updates, I wouldn’t be surprised if it really starts to get popular soon.

Great plugin!!

Just wanted to add my 2 cents here. For me the plugin stopped blocking login attempts at all and so is essentially worthless now. Tried to contact the developer and got no response. I don’t think the developer is active with his website or plugins and I have removed login lock from my site.

Anyone know if login lock makes any other changes to the database than just adding the wp_login_fails and wp_lockdown tables?

Deleting the plugin did not remove these tables so if any other changes were made they are probably still in there.

Not sure what happened to this plugin.

Thanks.

Thanks for the info and advice and being so honest with me, I really appreciate it. I’ll give BPS another look and probably try it out. It’s good to know the support is there if I need it. That’s something you can’t say about every plugin and service, even many of the really popular ones.

Regarding the server attack, that’s something I was thinking about the other day. Even if my site is secure through WP, what’s stopping someone from hacking my cpanel or the server itself. Oh, well I guess there’s only so much you can do and then just make sure you have a good backup strategy in case of disaster ??

Thanks again!

@ATIpro – Thanks for responding to me personally regarding your services.

I was leaning toward your plugin to begin with for sure as you seem to provide great support, have the most comprehensive features, and keep the plugin updated frequently.

What worried me was that what it does might be too complicated and if there was a problem I wouldn’t be able to fix it. So, if there are any complications with your plugin, all edits can be removed and things put back the way they were easily?

Thanks also for the tip about login protection. I have been using Login Lock for a few days now and it blocks attempts daily. Had no idea there were so many attacks going on ??

Couple other questions while I have you:

1. I noticed my hosting account has a discounted price for a service called Site Lock. Would that service interfere with your plugin if I was using both at once and would there be any reason to be using both anyway?

2. Would you recommend the premium version of your plugin for someone like myself who is not advanced in file editing, coding, etc, or would the premium features just be over my head?

Thanks again!

Shawn