Top online casino in Bangladesh,Falcon Play login register.REGISTER NOW GET FREE 888 PESOS REWARDS!

Resolved reedycat
(@reedycat)

11 years, 5 months ago

“Check this if you want to show a generic error message when a login attempt fails” doesn`t work. Errors are being displayed in any case.

https://www.ads-software.com/plugins/all-in-one-wp-security-and-firewall/

Viewing 7 replies - 1 through 7 (of 7 total)

Plugin Contributor wpsolutions
(@wpsolutions)

11 years, 5 months ago

When the feature is enabled what is the exact error message you are getting when your login attempt fails?

The errors displayed when you enable the “show a generic error message when a login attempt fails” checkbox will be generic in nature.

For example if someone who attempted to login gets the username or password wrong the message displayed will be the same regardless, ie, it will say:
“ERROR: Invalid login credentials”

Normally without this feature you would get a message telling you which of the fields you got wrong – eg, “Error: Invalid password”

The value of this feature is that it hides which part of the login fields were wrong hence making it harder for the hacker to know whether they should be targeting just the username or password or both.

Thread Starter reedycat
(@reedycat)

11 years, 5 months ago

Its ok then. I thought that option must totally disable any error messages while unsuccessfull loginning - wouldnt it be better? Anyway, it`s exellent plugin, thanks.

p.s. I`m going to finish making russian language files today for the All In One WP Security & Firewall – may I send it to you?

Plugin Contributor wpsolutions
(@wpsolutions)

11 years, 5 months ago

Yes certainly and thank you.
Please get in contact with us using the following link and we can include your file in the next release of the plugin:
https://support.tipsandtricks-hq.com/contact

Thread Starter reedycat
(@reedycat)

11 years, 5 months ago

I`ve sent my email at https://support.tipsandtricks-hq.com/contact
do reply, please, I could send you the russian lang files.

mra13
(@mra13)

11 years, 5 months ago

@reedycat, I did reply to your email. Your email actually landing in my spam box at first. So I won’t be surprised if my reply went to your spam box.

Jonas Lundman
(@jonas-lundman)

10 years, 10 months ago

This checkbox is confusing, concider a better labeling. On – the default “normal” way is in use, correct?

It sholud be the opposite – changes to wp default by the plugin should be checked.

Plugin Contributor wpsolutions
(@wpsolutions)

10 years, 10 months ago

Hi @jonas Lundman,
To make it clearer we will add an explanation in the description part of that checkbox.

Basically, if you leave that box unchecked, it will tell the person who is trying to log in which field was entered incorrectly.
Example:
ERROR: Invalid username

If you enable that checkbox, the message will be:
ERROR: Invalid login credentials

The above “generic” message will make it harder for the hacker to guess which login field they have entered correctly or incorrectly.

Viewing 7 replies - 1 through 7 (of 7 total)

The topic ‘Display Generic Error Message’ is closed to new replies.