Multisite + changed login URL can cause error

  • Resolved Andy Reutimann

    (@andyreutimann)


    2 years, 1 month ago

    When you use changed login URLs to prevent brut force attaks, one might run into a problem when using WordPress in multisite mode. Because: when clicking in WordPress admin on “My Websites” and trying to open up one of the other network sites, while not yet logged in to the respective site would still redirect you to domain.tld/wp-admin and cause an error there.

    Instead AIOS shall change this links to the respective login URL’s of the sites.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support aporter

    (@aporter)

    Hi,

    Sorry about the delay.

    Thanks for the report, I’ll see if we can reproduce the issue and if so apply a fix.

    Will update you when we know more.

    Best wishes,

    Ashley

    Plugin Support hjogiupdraftplus

    (@hjogiupdraftplus)

    Hi Andy,

    Sorry for the late reply.

    If I check, when we try open a website from “Sites” it will go to Dashboard site-domain.com/wp-admin and it shows “Not available.” message.

    Here if we redirect user to new renamed login url instead above message the brute force attacker bot will have the login url to try guessing password.

    I do not consider showing “Not available.” an error though I will internally discuss with team and get back to you.

    Regards

    Plugin Support hjogiupdraftplus

    (@hjogiupdraftplus)

    Hi Andy,

    We have discussed internally in team. We do not consider showing “Not available.” an error. if we redirect user to new renamed login url instead above message the brute force attacker bot will have the login url to try guessing password.

    Let me know if that is not the case.

    Regards

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Multisite + changed login URL can cause error’ is closed to new replies.