c_dilla

Thanks for your help but it looks like it’s there.

https://i.imgur.com/eU4FNvr.png

I thought that I might have blocked files with that extension or something for security reasons but resetting .htaccess and the cache doesn’t seem to change anything.

I was wondering if it was possible with the addons for either Restrict Content or Restrict Content Pro but I’ve found a way to do it now with another plugin, I think. Thanks for your help.

Thank you for your help, the second solution worked flawlessly in my case. I have to admit I don’t understand how it’s related to the captcha but whatever works is fine with me. I just hope I remember to change this code again if you update the plugin in the future.

Yes, I’m using Easy PayPal Button Pro through a shortcode and although the shortcode works, the problem is that both that shortcode and your content protector are using forms so they become nestled which is not supported by W3C and generates erratic behavior.

I can put a dummy button in to make the second button work but the content protector submit password button is still never working with nestled form tags. If I could figure out the id for the content (form id=”content-protector-access-form-b63a68406bad45953996f1676da6964c”) I could probably manually add a new form tag with the same id near the end to solve this issue… maybe.

Would there be any way to make an option so the password button was in the beginning by the way? Both more visible and maybe would be possible to avoid this problem.

Okay, thanks for your help. A simple ‘delete comment’ link would go a long way.

Thanks, that was it, it needed the WP XML-RPC functionality.

I also meant to say the WordPress app for Android, not WordPress plugin.

I’ve enabled some of it, like Login Form Captcha and Honeypot.

Do you mean the Rename Login Page? I guess that I could do that but then I was afraid that it was gonna be trouble for everyone who are actually contributing to the site.

Since I’m using AJAX I was a bit afraid of enabling the Cookie Based Brute Force Login Prevention.

Thanks, 99,9% is bots trying to login according to the logs and they’re always using the (non-existing) admin username. I just felt like it would be a good security measurement to ban the IP:s of these bots instead of even wasting resources on handling their requests.

I’m sure that you could ban their subnets and so on or ban Russia and China and so on completely but I’d rather not go there.

No problem, I don’t know what template you’re running but remember to be careful if you’re modifying WordPress default template or core files. You might have to modify that file again when you upgrade so remember what you put in there or your site might break later on.

Well, have you included that php file in your pagename page (and put ‘example’ in quotation marks)? And what does the error_log say?

That’s why you should include a php script into the WordPress page called pagename to retrieve the variables.

How did you retrieve the variables before? $_GET[example1] should be $_GET[‘example’] in the above example by the way.

I’m still not sure that I understand. Have you done as I suggested above and included the php file (with $_GET[‘example’] and so on) into the page that you’re redirecting to to be able to retrieve the variables? If so, what does the error_log say?

You can for example install a plugin like Include Me and stick a line in the pagename page [includeme file=”file.php”] and do your $_GET[‘example’] and so on in file.php.

Well, I’m not sure that I understand but I think that you can create a page (name=pagename and id=123 in this example) and stick some rewrite rules in the end of functions.php, something like this:

add_rewrite_tag('%example%','([^&]+)');
add_rewrite_tag('%example2%','([^&]+)');

add_rewrite_rule('^pagename/([^/]*)/([^/]*)/?','index.php?page_id=123&example=$matches[1]&example2=$matches[2]','top');

Thank you, it was a minor issue but I reported it anyway.

I like an easy way of being able to keep track of who’s logging in.