David Adams
Forum Replies Created
-
Loanna,
[redacted by moderator]
David.
- This reply was modified 3 years ago by Steven Stern (sterndata).
Loanna,
Ahhh, yes, sorry, I didn’t see that whole section!
Updated requested screenshot: https://i.imgur.com/hBzLFs0.png
I spoke to my hosting provider and they confirmed that the server files are setup as 755 (folders) and 644 (files).
David.
Loanna,
No change.
Requested screenshot: https://i.imgur.com/r4Z2nmO.png
Plugins: https://i.imgur.com/QORkGCf.png
New log: https://pastebin.com/4LJwqgZ7David.
Sent.
Forum: Plugins
In reply to: [Wordfence Login Security] User Locked Out (2FA) – How To Unlock?The user has got back to me. It seems that the original issue has been resolved (the user is now unlocked) but he is not allowed to configure Wordfence 2FA due to an error.
I have replicated the error in my development environment. Please see the linked video screencast below showing detailed step-by-step instructions for replicating this issue.
https://1drv.ms/v/s!AiwD9-8HyNC591HR8stcxmOQQkVZ?e=r1GaeQ
The question posed above is answered in the video.
Forum: Plugins
In reply to: [Wordfence Login Security] User Locked Out (2FA) – How To Unlock?As mentioned previously , I am referring to the WordPress “User Profile Page”
The image on the left is the standard user profile page for a standard WordPress role (Administrator in this case), the image on the right is the standard user profile page for a non-standard WordPress role (Membership Member in this case).
- This reply was modified 3 years, 4 months ago by David Adams. Reason: Added further info on image
Forum: Plugins
In reply to: [Wordfence Login Security] User Locked Out (2FA) – How To Unlock?Still not heard back from him, but my guess is that this has fixed the issue.
You are correct, the role assigned to him was created by Paid Memberships Pro (Membership Manager).
Forum: Plugins
In reply to: [Wordfence Login Security] User Locked Out (2FA) – How To Unlock?@wfphil, thanks for your response. Unfortunately, there is no Wordfence Login Security section on the User Profile page. I did look and have just re-checked now.
I have tried removing the requirement for his role to have 2FA in settings, then re-enabled it. His account is now no longer listed in the Locked Out screen so I am hoping this has fixed the issue (I haven’t heard back from the user yet).
If you have SSH access to your hosting server then you can use WP-CLI to disable plugins (https://wp-cli.org/)
Logically speaking, how can a non-existent plugin send you emails?
Did you sign-up for paid Sucuri services e.g. monitoring/firewall etc? If so, email alerts can be enabled/disabled by logging into sucuri.net.
Could the emails be coming from a different site?
Do you know how to extract the Internet headers from an email message? If so, send them through and I’ll take a look.
p.s. I’m not from Sucuri, just a random on the Internet.
No idea, sorry.
Sucuri Plugin audit logs are, by default, stored in <site>/wp-content/uploads/sucuri (although this can be changed by defining the SUCURI_DATA_STORAGE constant in wp-config.php). By deleting this folder (or files) you will effectively remove these logs.
Note: after deleting the files/folder, the next time WordPress runs it/they will be re-created.
Can’t help with the page load problem.
Johan,
That works perfectly, thank you for being so quick off the mark on this one – outstanding!!
I will mark this ticket as resolved.
David.
Actually just checked my plugin and there to you don’t seem to be able to revert the hardening, greyed out. See screenshot: https://i.imgur.com/JviZV2m.png. So maybe you can’t (using the plugin itself).
Just a quick note, I’m not from Sucuri, just a random guy on the Internet trying to help. I don’t know whether undo’ing the hardening should be an option.