Unable to log in with Google Authenticator

  • Resolved Pierre236

    (@pierreto)


    1 month ago

    I found myself unable to connect to the site with Authenticator.

    I had to reinstall a backup, and it took hours of work before I was finally able to reconnect.

    But just find that the problem is not only from your plugin.

    • This topic was modified 1 month ago by Pierre236.
Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support hjogiupdraftplus

    (@hjogiupdraftplus)

    Hi @pierreto,

    Ok, Can you please provide us more details ?

    If you have issues due to two factor auth login in future, you may add below constant it will disable two factor auth for all users and allow to login as admin with TFA. 

    define('TWO_FACTOR_DISABLE', true)

    Regards

    Thread Starter Pierre236

    (@pierreto)

    Hi,

    I’ve had a lot of security problems over the last few days.

    Repeated intrusion and nothing in your logs of bizarre.

    So I couldn’t disable double authentication.

    Finally, I uninstalled your plugin and started using Solid Security, and now the problems have been solved.

    There seems to be a security flaw in your plugin that allows hackers to connect.

    Plugin Support hjogiupdraftplus

    (@hjogiupdraftplus)

    Hi @pierreto

    Ok, If you still have {db+prefix}_aiowps_audit_log table please share with us using https://pastebin.com/ which shows audit logs inside WP Security > Dashboard > Audit logs so can check the successful login and failed login attempts if you know the exact time.

    If there is not anything in this audit log than instead standard login other script may used to login.

    If it is failed login attempt XML RPC call of wp_getUsersBlogs is trying to authenticate the user. you have to disable xml rpc and ping back.

    You should install file change detection also so knowing which files gets updated in future.

    Regards

Viewing 3 replies - 1 through 3 (of 3 total)
  • You must be logged in to reply to this topic.