many unknown "logged out" entries

  • Resolved julesjunction

    (@julesjunction)


    9 years, 4 months ago

    Hi, we are experiencing many ‘Logged out’ entries by a user called ‘Other’. This is new behaviour in the Simple History logs and we thought at first that our website had been compromised but I don’t think this is the case.

    Can you help me understand what these ‘logged out’ entries by ‘Other’ are and why there isn’t a corresponding ‘logged in’ entry?

    This is what I get when I click the date on one of the “logged out” entries (which never has a corresponding “logged in” entry).

    Key	Value
id	3855
logger	SimpleUserLogger
level	info
date	2015-06-29 07:11:18
message	Logged out
type
initiator	other
context_message_key	user_logged_out
_message_key	user_logged_out
_server_remote_addr	185.93.187.49

    We are using the Pinnacle theme with WooCommerce/WPML plugin. Security plugins are Wordfence and Capcha on Login. All up-to-date versions.

    Interestingly I cannot find the IP address reported by Simple History for the ‘Other’ user in the Wordfence Live Traffic logs, which is confusingw.

    Simple History is a great plugin that really helps us and as I said before, it has only recently started reporting these ‘logged out’ entries by the mysterious ‘Other’ user.

    Regards,
    Jules

    https://www.ads-software.com/plugins/simple-history/

Viewing 11 replies - 1 through 11 (of 11 total)

  • I’m having the same issue.

    It began recently after I enabled the “hide login page” feature of iTheme Security (which hides the default WordPress login address /wp-login.php to make it harder for hackers).

    I changed my mind about the feature and turned it off, but ever since I’ve seen these odd “Logged out” entries, about one every 30 minutes. It would probably happen more often but we ban any IP that tries to sign in as “admin” or guesses wrong too many times.

    Obviously this isn’t critical, but a bit annoying. If there’s any log I can generate that might help, let me know!

    Looking through the forum, I see others have had this issue. Maybe it has nothing to do with what I said above, who knows. Similar to the original poster, here’s a screenshot of a log entry. Or as text:

    Key	Value
id	2557
logger	SimpleUserLogger
level	info
date	2015-10-02 04:42:46
message	Logged out
initiator	other
context_message_key	user_logged_out
_message_key	user_logged_out
_server_remote_addr	178.129.169.148
_server_http_referer	https://myfullurl.com/wp-login.php
    Plugin Author eskapism

    (@eskapism)

    Thanks for the feedback.

    I tried before to install iThemes Security to see if I could reproduce it, but to no avail. But after your feedback it will install it again at let it run for a longer time on one of my sites. If I just manage to reproduce the problem I will probably/hopefully be able to fix it.

    Thread Starter julesjunction

    (@julesjunction)

    Hi Par,

    we are still receiving the mysterious ‘Logged out’ entries by a user called ‘Other’. We do not use iThemes Security, we use Wordfence Security plugin and Capcha on Login plugin.

    Rgds,
    Jules

    Plugin Author eskapism

    (@eskapism)

    Thanks for the info Jules, I will install those plugins and see if I also get those entries.

    Plugin Author eskapism

    (@eskapism)

    Ok thanks for the bug reports. After installing “Capcha on Login” I also started getting these messages. It seems like I get an “User logged out”-event when it should be “User failed to login”-event. Will debug a bit more to see where the problem is.

    Thread Starter julesjunction

    (@julesjunction)

    Thank you Par for looking into this further.
    It is good to hear these are more failures to login than someone logging out.
    Look forward to hearing how you get on.
    Jules

    Plugin Author eskapism

    (@eskapism)

    OK, you who have the plugin “Captcha on login” installed and had these Logged out-entries: can you test the just released version 2.3.1 and see if they stop coming and get logged as “Failed to login” instead?

    Thanks

    While I don’t use the “Captcha on login” plugin, just wanted to let you know I updated to 2.3.1 and still get the “Other, Logged out” entries.

    Possibly relevant plugins I’m using:
    – iThemes Security
    – Restricted Site Access

    Plugin Author eskapism

    (@eskapism)

    Thanks @enfueggo! I will test with the plugins you mentioned too.

    I’m having the same issue. I’m seeing many “Logged Out” events from the “Other” user. I also have iThemes Security installed and have the hide login area feature enabled.

Viewing 11 replies - 1 through 11 (of 11 total)
  • The topic ‘many unknown "logged out" entries’ is closed to new replies.

Tags