• Resolved SLIS

    (@slis)


    Strange event today. I tried logging into my wordpress dashboard and I kept getting notices I would get banned if I didn’t put in my correct password. Well even though I did just that, I got banned. I attached a screenshot of the error message.

    https://www.dropbox.com/s/sfwilppsp9dkv2n/Screenshot%202015-08-24%2023.02.31.png?dl=0

    Luckily my hosting disabled the plugin remotely for me, but obviously I want it on. Any suggestions on what caused that, and how to activate it without it happening again?

    I will amend this (apologies for the ramble) with the fact that I have had database connection problems past 2 weeks and my hosting determined Yop_Poll was causing a drag on my resources. When I deleted it, it automatically deleted my P3 profiler plugin and shortly afterward I had some comments I couldn’t delete from my spam queue.

    My hosting discovered there’s still remnants of the YOP plugin in cpanel and MySQL and I put in a ticket to remove all traces, but no word on when that will happen. But I’m wondering if that has anything to do with it. Otherwise I’m stumped?

    https://www.ads-software.com/plugins/wp-simple-firewall/

Viewing 15 replies - 31 through 45 (of 50 total)
  • Thread Starter SLIS

    (@slis)

    Paul, my home IP address was on the blacklist (I removed it.) But there’s another IP that I can’t identify. My wordpress IP at the bottom of the page isn’t included. I did a reverse lookup of the offending IP that I don’t recognize and it said no site found?

    Plugin Author Paul

    (@paultgoodchild)

    That ip you don’t recognise is probably someone that attempted something not permitted in your site… So it was flag by the automatic black list system. That’s ok

    Thread Starter SLIS

    (@slis)

    Ok, so think it’s safe to activate now, or are there any other settings I need to tweak?

    Plugin Author Paul

    (@paultgoodchild)

    Nope, there are no other settings. You could remove the other ip just to be sure… It wont do any harm.

    Thread Starter SLIS

    (@slis)

    Sorry, one last question: to reenable, do I need to delete the “forceOff” file? Don’t see a way to do it from inside the dashboard. Thanks!

    Plugin Author Paul

    (@paultgoodchild)

    Yes, we don’t have a way to delete the file from inside the plugin

    Thread Starter SLIS

    (@slis)

    Thanks Paul: looks like it’s all fixed now ??

    Plugin Author Paul

    (@paultgoodchild)

    great! ??

    AND Now,………… I am locked out! WT? I got locked out of my other site and shoulda known not to install it on my other site! I just installed it. Well so much for that site! HELP?

    Plugin Author Paul

    (@paultgoodchild)

    Hi aship,
    Did you receive any warning about being potentially locked out?

    You can delete the plugin over FTP, or follow this guide to turn off the firewall plugin:
    https://icontrolwp.freshdesk.com/support/solutions/articles/3000000959

    I actually just experienced a similar issue. I was in my site two nights ago, adding products on my WordPress/WooCommerce site (nothing too crazy there) and woke up yesterda to the alert that I’d exceeded my 5 transgressions and was being blocked. I created the “forceOff” file and removed my IP from the “Auto Blacklist” list.

    But now this morning, a new customer was trying to sign up for my service and she was also blacklisted. I tried disabling the “IP Manager” and deleting the cache, but she was still getting the blacklist message so I added the “forceOff” file again.

    I wonder if this has anything to do with a conflict with updates in WordPress or WooCommerce?

    P.S. No warnings about being potentially blocked.

    Spencer

    (@spencerssullivanstrombergcom)

    I had a similar problem to aleks1217. Yesterday, my business partner and I were each blacklisted upon our first attempt to login to the site that day. I had set the auto blacklist to require 7 transgressions, and we each got a message saying we had exceeded 7 transgressions on our first login attempt.

    I used forceOff to disable the plugin, and then was able to access the site. I’m leaving the IP manager off for now. We have an ecommerce site, and I don’t want customers locked out.

    Plugin Author Paul

    (@paultgoodchild)

    @aleks1217 if you had turned off the IP Manager, you couldn’t have been receiving the same Black listed message – that code can’t run if you have the feature disabled. Can you definitely recheck that the IP manager is not enabled? If it is, and you’re receiving this message, then is a serious issue there that we need to dig into.

    For my error, I didn’t turn off the IP Manager, but rather just deleted my IP from the Auto Blacklist, and the “You’ve Been Blacklisted” page went away right away. For my customer, I removed her IP (blacklisted message persisted), turned off the IP Manager (blacklisted message persisted) and then created the “forceOff” document (blacklisted message persisted). I also deleted the caching on my site and the message persisted.

    Because of her browser’s cache, it was probably delivering the same site even once I changed the settings.

    As of just now, I have removed the “forceOff” file and the IP Manager is off. For the past day I’ve had the “forceOff” file activated. So we shall see…

Viewing 15 replies - 31 through 45 (of 50 total)
  • The topic ‘Firewall locked me out of my site’ is closed to new replies.