Cookie Based Brute Force Prevention

  • Resolved joyryde

    (@joyryde)


    3 years, 11 months ago

    Hi –

    We do not use this feature because it was constantly sending real customers of ours to the redirect URL even though they weren’t a security issue.

    Now we cannot get the Secret Word or the Re-direct URL to be removed from he settings page, and customers keep complaining to us that they are being redirected to that URL even though the feature has been disabled for 2 years.

    How do we ACTUALLY disable it, and how do we remove those items from he fields in the settings?

Viewing 9 replies - 1 through 9 (of 9 total)
  • Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi,

    How do we ACTUALLY disable it, and how do we remove those items from he fields in the settings?

    This feature is stored in WordPress options table database.

    Look for the row with “aio_wp_security_configs” and then look inside the option_value field and find the parameter “aiowps_brute_force_secret_word” to get the value.

    Let me know if the above helps you.

    Thank you

    Thread Starter joyryde

    (@joyryde)

    If we have this feature disabled, then why is your plugin still redirecting people to the URL that’s in the disabled settings?

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, do you have a cache plugin running in your site or server? Do you use CDN in your site?

    Regards

    Thread Starter joyryde

    (@joyryde)

    Hi, we use Cloudflare and WP Rocket. Both caches were cleared however.

    Plugin Contributor mbrsolution

    (@mbrsolution)

    I am not really sure why this has happened in your site.

    Regards

    Thread Starter joyryde

    (@joyryde)

    We just checked the PHPMyAdmin, the redirection URL for some reason says

    https://127.0.0.1

    But that is not the URL that the plugin is sending our users to, it’s sending them to Amazon.com, which was a setting back in 2019 that we had. The plugin even forced me to Amazon today when I tried to log in.

    Plugin Contributor mbrsolution

    (@mbrsolution)

    That is very strange to me. You might want to reset the plugin. The following information can help you.

    https://mbrsolution.com/wordpress/how-to-reset-aiowps-plugin.php

    Let me know how you go.

    Thank you

    Thread Starter joyryde

    (@joyryde)

    OK, will do, thanks!

    Thread Starter joyryde

    (@joyryde)

    OK, I’ve completed this and will set it up from scratch again. Thank you

Viewing 9 replies - 1 through 9 (of 9 total)
  • The topic ‘Cookie Based Brute Force Prevention’ is closed to new replies.