403 error when trying to login/logout

  • Resolved punkyb9

    (@punkyb9)


    11 years, 1 month ago

    I get a 403 error when I attempt to login/logout of my site. If I remove the htaccess file, I can login fine. If I just remove the following code, I also have no problems:

    # BRUTE FORCE LOGIN PAGE PROTECTION
# Protects the Login page from SpamBots & Proxies
# that use Server Protocol HTTP/1.0 or a blank User Agent
RewriteCond %{REQUEST_URI} ^(/wp-login\.php|.*wp-login\.php.*)$
RewriteCond %{HTTP_USER_AGENT} ^(|-?)$ [NC,OR]
RewriteCond %{THE_REQUEST} HTTP/1\.0$ [OR]
RewriteCond %{SERVER_PROTOCOL} HTTP/1\.0$
RewriteRule ^(.*)$ - [F,L]

    I turned off “Login Security” and there isn’t anything in my custom code for Brute Force Login Protection. But when I recreate my secure.htaccess file, the brute force login code gets added again and then I can’t login.

    Anything I can do about this? The only other security plugins I have installed are Wordfence and Sucuri, but when those are disabled the problem still occurs. I’ve looked at other forum posts and can’t find anything that will resolve this problem.

    https://www.ads-software.com/plugins/bulletproof-security/

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Author AITpro

    (@aitpro)

    Yep, we are aware of this problem and will release a new version of BPS as soon as possible. You can modify the code as shown below and it should work.

    RewriteCond %{HTTP_USER_AGENT} ^$ [OR]

    i too had this problem. i could not log in as the administrator. and if i made a member profile i could not log out. anytime i wanted to log in or log out i got 403.
    i am not IT savy so i called my hoasting company and had my site deleted and they loaded a backup of my site from several days ago. now i am affraid to upgrade BulletProof Security.
    just to let you know.

    Thread Starter punkyb9

    (@punkyb9)

    Looks like that code is in the most recent version of BPS which I just upgraded to. But I’m still not able to login/logout unless I remove that entire Brute Force Login code. Any other suggestions?

    Plugin Author AITpro

    (@aitpro)

    Yep, some Servers just cannot use this code so if you are seeing a 403 error then just delete it.

    https://forum.ait-pro.com/forums/topic/403-error-after-upgrading-to-version-49-3/#post-10534

    Thread Starter punkyb9

    (@punkyb9)

    Thanks for the update.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘403 error when trying to login/logout’ is closed to new replies.