doubledworks

Hummm, it appears I may not have waited long enough (30 minutes) for it to update cache or something. It seems to work now after waiting a further 30 minutes or so.

Opp, I posted a new topic given this one is marked resolved.

I put the suggested code above as follows into the .htaccess file located in my sites root directory but the recommendation warning for my site still appears in the Sucuri / Malware Scan / Website Details at the bottom of the page, suggesting I still need to insert the code.

<ifModule mod_headers.c>
Header set X-XSS-Protection “1; mode=block”
Header set X-Content-Type-Options “nosniff”
</ifModule>

What am I overlooking?

Furthermore I found that if I tried to install the update again it appears to work. Not sure why but tested twice and it installed. I cant say if it installed everything as it should though. Hopefully someone attends to this shortly and provides some insight.

Updating this closed thread as it may help someone avoid the headaches I experienced.

After considerable testing on my part (since the 10th of December) it appears that the issue was related to my internet provider (Spark NZ – formally Telecom NZ) and the caching servers. I had them remove my server IP from the caching system and a few hours later the problem was gone. Other side issues created from the problem like duplicate users have also gone. I had to remove them manually but the site is no longer creating new users with each page load.

Checked another 4-5 countries and all fine. Doing GEO IP searches on these random IPs and they are looking like they are generated by my ISP.

I will contact Telecom NZ and see what they have to say about it.

I just discovered that running my connection via a dns service stops the problem with the IP changing upon page refresh etc.

I ran my connection via switzerland and Holland and those IPs remained static for the purpose of the test and would allow whitelisting if it wasn’t for the fact that they are dynamic IPs’ via this service.

Not sure where to go with this now. Weird.

Apperently the issue is probably existent in an apache update, and or the way apache works at the core and how it handles IP address-caching / passing between applications such as MySQL and php.

No ETA on a fix. I will probably have to disable the plugin on my site because of what looks like the result of a rushed server update.

No. My ISP connection IP is static. My server IP also seems to be static. Its the same IP since I start the account some years back now.

User Login / Logged in Users

All users have same ID and user name but different IP with a new one generated ever time i open or refresh any page.

Did you see my comment regarding database?

I would have thought that these copies of the logged in users should be in the database. Why would it be in ALL IN ONE and not the database?

That is pretty much exactly what I said to them in my email. I will contact them again. This time via live chat. Hopefully I have this resolved soon.

One other thing.

I only see the duplicated users from within the ALL IN ONE plugin.

I cant locate these duplicates in the database. I only see the original user from PHPmyAdmin.

Well the only thing I can see it being are server security updates that took place prior to it happening. I got an emergency email stating that it was happening in a few hours time and sorry for the short notice.

I did get locked out once prior to that about a month before but that time I dropped all setting from the .htaccess file so not sure exactly what happened that time but whitelisting was active at the time.

The first time it happened I just reset all features and it was fine.

I want to exhaust the possibility that its plugin related before I contact hostmonster for the second time.

For some reason they haven’t responded to my support email however I do understand that they don’t really support things like cms or the plugins etc.