iThemes Support

Hi,

The Hide Backend feature is still a Standard feature. However, we’ve moved it to the Advanced page due to it’s likelihood of conflicting with particular environments.

Thanks,

Gerroald

Hi,

I’ve seen this reported before, but have never been able to recreate it.
Just to be clear, disabling iThemes Security resolves this? If so, can you privately email me?

gerroald @ ithemes.com

Thanks,

Gerroald

Hi,

Thanks for reporting this, and all of the information.

Can you set WP_DEBUG to true and let me know if you see an error on the blank page?

Is this the other backup plugin you have running? If it is I’ll do some testing with it.
https://www.ads-software.com/plugins/backwpup/

Thanks,

Gerroald

Hi,

This feature is a personal preference. It’s designed to let you know when actual files are changed, added or removed in case malicious code was added. But not when content is added or edited. These types of edits are stored in your database.

As for if the changes are legitimate or not, that comes down to you know your site best. As a rule of thumb it’s usually okay to exclude files/directories that you know perform processes often. Such as cache and backups directories.

Thanks,

Gerroald

Hi,

Are you getting redirected to the home page when trying to access the log in page? If so, then it sounds like Away Mode is active. Navigate to wp-content > uploads > ithemes-security via FTP and delete the itsec_away.confg file. This will get you back in.

Thanks!

Gerroald

Hi,

@b13story – I don’t have an exact timeline for you. But it is coming very soon!

Thanks,

Gerroald

Hey Loren,

Thanks for the update. Happy to hear you were able to track this down.

I will get some information up covering this.

Thanks,

Gerroald

Hi,

@dwinden – I don’t have an exact release date for you. But it is coming very soon. We’ve been focusing on wrangling various bugs that are out there and efficiency. This release should help a lot.

@supawiz6991 – I believe this upcoming release will help you!

Thanks,

Gerroald

Hi,

I haven’t been able to recreate this yet. Where are you searching for the posts/pages?

Please let me know what I’m missing here.

Thanks,

Gerroald

Hi,

I’m sorry to hear you found this out this way.

It sounds like something is getting corrupted in the email process. This could be many things. I’d saving locally. You might go ahead and do a manual backup to make sure everything is working correctly.

Thanks,

Gerroald

Hi,

Could you email me the corrupted .htaccess?

gerroald @ ithemes.com

Thanks,

Gerroald

Hey Elderdan,

Unless your username is actually “Admin” this is completely up to you. This isn’t related to your previous issue. But it is bad practice to have a username admin.

Thanks,

Gerroald

Hi,

Is this an emailed backup or a locally saved backup?

Do you by chance have another backup to backup from? It seems this one is corrupt. It should have a SQL file in it.

Thanks,

Gerroald

Hey Happyliu,

You can’t really stop something from attempting an attack. But you can prevent them from breaching your site once they do.

As for the server error, could you please share your PHP webserver error logs? If you don’t have access to these your host can provide them for you. If you don’t want to share them publicly you can email me. This is likely going to be due to resources since you’re under such a heavy attack.

gerroald @ ithemes.com

Thanks,

Gerroald

Hey Elderdan09,

This is likely a theme conflict, but possibly a plugin conflict. You can disable the feature in the database. In the yourprefix_options table delete the itsec_recaptcha row. Or you can manually disable the plugin via FTP by naming it’s directory better-wp-security.bak. Then log in, rename it back to reactivate it and disable the feature.

If you find yourself locked out due to Away Mode navigate to wp-content > uploads > ithemes-security via FTP and delete the itsec_away.confg file.

Thanks,

Gerroald