Unable to log in, guessing captchas not showing?

  • I’ve had numerous failed log in attempts from bots over the last couple of weeks and tried to combat this by activating captchas in the Sucuri settings.

    I’ve also changed the standard wp-admin in the past to something else.

    But now when I try to log in I get an error message

    “FEHLER: Deine Antwort war falsch – Bitte versuche es erneut.”
    “ERROR: Your answer was wrong – Please try again.”

    But there is no question anywhere on the screen, which means I’m now effectively locked out of my own page. How can I change/revert any of these settings from outside the admin panel? I have FTP and phpmyadmin access.

    By any of the settings I mean, disable the supposed captchas that aren’t there or – if it helps at all – change back to the standard wp-admin.

    Any help is greatly appreciated.

    • This topic was modified 5 years, 2 months ago by Echtzeit.
Viewing 6 replies - 1 through 6 (of 6 total)

  • @echtzeit Can you share the domain name, or specify whether you are using Sucuri’s WAF or just the plugin. I ask because I do not think you can add a CAPTCHA through the Sucuri plugin settings , only through their WAF service, and so the process for fixing it will be different depending on that.

    If it is just a separate plugin that you used to add a CAPTCHA then simply rename its directory inside /wp-content/plugins/ and that will probably work.

    Thread Starter Echtzeit

    (@echtzeit)

    https://www.homebrewwelt.com is my domain name. I simply activated two check boxes in the settings and I’m using the WordPress plugin. Does the WAF service cost money?

    @echtzeit Thanks!

    It looks like you are not using the WAF (it does cost money), and I’ve looked over the latest version of the Sucuri plugin but cannot find anywhere that would allow you to change the wp-admin URL or add a CAPTCHA, so that’s strange.

    Either way, just rename the most recent plugin’s directory in /wp-content/plugins/ using FTP, then try to access it. For example, if you wanted to do this with Sucuri’s plugin you would rename /wp-content/plugins/sucuri-scanner/ to something like /wp-content/plugins/sucuri-scanner-bkup.

    Thread Starter Echtzeit

    (@echtzeit)

    First of all, thank you very much for trying to help me. Renaming the plugin folder was the first thing I tried, but it doesn’t work. Since I changed the standard wp-admin to something else, the regular wp-admin doesn’t work, even if Sucuri is deactivated.

    And since I let Sucuri make that change, I have no clue how it is implemented or how I can revert it.

    @echtzeit

    Have you tried replacing the .htaccess file from the default WordPress one?

    
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPress

    Usually they disable by adding a rewrite to the .htaccess file that prevents access to wp-login.php and wp-admin.

    Be sure to rename/backup your existing .htaccess file before editing it.

    And glad to try and help! ??

    • This reply was modified 5 years, 2 months ago by g0tr00t.
    Thread Starter Echtzeit

    (@echtzeit)

    Yes, I tried everything. Changing the .htaccess and deleting (renaming) the Sucuri folder. But nothing worked.

    Today I had an idea and checked with the browser tools, to see if there was a captcha hidden some where. And what do you know, there is.

    Link to screenshot

    As you can see, the display tag read “hidden” and I changed it to “inherit” which made it appear.

    The headline reads: “Enter something special” but I have no idea what I should put into the box.

    Like I said before, I know I activated a captcha checkox in the Sucuri options and I’m unable to log in since.

    What do I need to enter in that darned textbox? I’m locked out of my page for month now.

Viewing 6 replies - 1 through 6 (of 6 total)
  • The topic ‘Unable to log in, guessing captchas not showing?’ is closed to new replies.