Stuck after submiting the captcha

Ok, i was wrong. There is a log of the plugin as follows:

19:39:54 #6106232 INFO – MY IP POST /wp-login.php – Logged in user – Admin

19:40:11 #8041643 CRITICAL – MY IP POST /wp-login.php – Brute-force attack detected on wp-login.php – [enabling HTTP authentication for 60mn]

This is exactly when the “stuck” happened. After submit the captcha i never saw the login form.

What is your “Login Protection” configuration (“When to enable the protection” option)?

It is Captcha-Image, When under Attack, Post, for 10 minutes if 5 post requests in 60 seconds.

Also Enable Bot Protection.

Did you try with the captcha and “Always enabled” to see whether you can log in?
If you test this and get stuck at the captcha, you can delete the brute-force protection configuration file: /wp-content/nfwlog/cache/bf_conf.php.

You mean as a test or forever ? Because always on asks apparently from users also to solve the captcha for login.

Also i want to mention that when stuck, i reboot my router to get a different IP and i’m in. If this helps you, i dunno.

Yes, just for testing purpose. Try once only and set it back to your original configuration.

Also i want to mention that when stuck, i reboot my router to get a different IP and i’m in. If this helps you, i dunno.

The firewall’s brute-force protection does not rely on IP. Are you sure you don’t have a another security application blocking you (maybe at the host level for instance)?

OK i will test and try to replicate.

There is a pretty tight mod_security in the server level, but i have no control over it. I can only disable/enable it.

That’s what I thought: Modsecurity is likely blocking you.

Could be that, still this started after i moved from my old security plugin to yours.

Anyway, i will keep an eye open and update here.

Thanks !