JTC-lite enabled by default: 2 thumbs down

Yeah, I hear ya. We would have either gotten complaints about not automatically enabling/setting up JTC-Lite or about automatically enabling/setting up JTC-Lite. ??

The ratio is: 90% of folks want JTC-Lite pre-setup vs 10% that do not want JTC-Lite pre-setup. So we went with the numbers on this and expected (less) complaints. That is just par for the course. ??

Thanks for the Kudos ??

• This reply was modified 7 years, 2 months ago by AITpro.

Oh and actually JTC-Lite prevents lockouts. Users have to enter a valid CAPTCHA before login processing will even occur/be processed.

With that said, if another plugin or theme login form protection method is being used already then there is always the possibility of a direct conflict. ie 1 plugin or theme feature either completely cancels out another plugin or theme feature or worse – both crap out.

• This reply was modified 7 years, 2 months ago by AITpro.

Thanks for your quick reply & explanation.

Part of my reason for posting was that I know other people are going to say “What the heck is this?” …because that’s what I said, and when I did a keyword search for it, nothing came up.

RE: “Users have to enter a valid CAPTCHA before login processing will even occur/be processed” …if that were the case, it wouldn’t be such a big deal. After hearing about this from clients, I ran some tests and my password manager totally bypassed the 3rd field triggering 2 successive failed login attempts.

I am interested in knowing how many others have concerns about this.

Sounds similar to this issue with LastPass Password Manager > https://forum.ait-pro.com/forums/topic/lastpass-password-manager-unable-to-login/ I’m sure there are other password managers out there that are also going to cause this type of problem. What is strange is that password managers have this type of problem at all. You would think that they would be capable of seeing all Form Fields since that is how they are supposed to be designed. Wierd stuff, but anything goes in the wild, wild Internet West. ha ha.

As far as BPS Pro feedback goes over the last 7 years regarding the full version of BPS Pro JTC Anti-Spam|Anti-Hacker we did have a fair amount of issues and complaints around 3 years ago, but we rarely hear anything from anyone regarding BPS Pro JTC these days. ??

• This reply was modified 7 years, 2 months ago by AITpro.
• This reply was modified 7 years, 2 months ago by AITpro.

Another possibility could be a “combo problem”. ie someone already has some sort of login page/form protection and then JTC and password managers come into play to create a combo problem. ie plugin X login security feature Y cancels out BPS JTC-Lite, which then creates some additional problem for a password manager to correctly see the JTC-Lite Form Field. Yep, I’ve see that one and some other oddball things as well on my WP travels.

• This reply was modified 7 years, 2 months ago by AITpro.
• This reply was modified 7 years, 2 months ago by AITpro.

Ok – good to know thanks!

The JCT-Lite plugin doesn’t work for me… It essentially locked me out. Tried it in Firefox, Chromium, Vivaldi with no luck. On the admin login page it just displays a text box with some JCT text in it. I had to FTP and disable BPS, then I was able to login and disable JCT and reset BPS. I couldn’t even join the BPS forum because it uses JCT and so I had to get here via WP Plugin’s forum.
I like the idea and would like to get it working…

JTC works on over 50,000 websites/servers so whatever problem is occurring for you is an isolated issue. Could be caused by something in your Browser like a password manager or other add-on/extension. Could be caused by using a Proxy or VPN.

I see a couple of security log entries on the forum site logged a few minutes ago showing this host: Host Name: static.121.37.9.5.clients.your-server.de and the Server Protocol is HTTP/1.0, which is blocked intentionally by other htaccess code we use since typically only spammers and hackers use the older HTTP/1.0 server protocol. Outdated Proxy software such as older versions of Squid or other old Proxy software using HTTP/1.0 should be upgraded to the new Server Protocol HTTP/1.1 and of course HTTP/2 is now starting to become mainstream.

Got it working! Thanks!! I think a password manager (or other extension) was messing things up.
PS: static.121.37.9.5.clients.your-server.de was definitely not me.

Great! We will continue to try and see if we can figure anything out for issues like these, but it’s not easy since JTC is server-side and Browser issues are client-side. ??

Hi, am trying to log into my site after validly entering the CATPCHA, and its telling me to hover or click the below box and when I click the below box, an auto text appears like a drop down that says “Type/Enter: jtc”.

What should I do? I can’t login

I believe you just type the letters “jtc” into the new text box.

Still does not work.

@achola – Sounds like you are already using some other login security feature, which conflicts with BPS JTC-Lite. Do these steps to get into your site and turn off JTC-Lite.

1. Use FTP or your web host control panel file manager and rename the /bulletproof-security/ plugin folder to /_bulletproof-security/.
2. Login to your website.
3. Rename the /_bulletproof-security/ plugin folder name back to /bulletproof-security/.
4. Go to the BPS JTC-Lite page, uncheck the Login Form checkbox and click the Save Options button.