majito

it worked.. thank you very much

can i ask if this comes again how i can solve it? not just by replace,, but to be with / in the first place

• This reply was modified 1 year, 7 months ago by majito.

it worked.. thank you very much

• This reply was modified 1 year, 7 months ago by majito.

about aiowps.. i have it before wordfence.. my site in some time was been hacked or inflected.. until now i don’t know what happened to my site by that time.. i was new to wp.. and in that period i hadn’t any security or knowing about secure the site.. but before the site was been hacked or on the same time i was having cloudflare abd aiowps.. even if they in that time wasn’t fully activated.. as i kept everything as it was when i uploaded the plugin.. but i was afraid the plugin and cloudfkare couldn’t protect the aite well.. so i searched and kbow that wordfence or itheme is better on security.. so i reinstall my site from start, and activated aio and itheme.. as what i searched they 2 have much different ways to protect site..those plugin was good in that time.. but “ezoic” as i use it as proxy and for optimize my site, didn’t recommend itheme for speed.. so i go on wordfence.. as it was recommended for speed and good security..

so as you read i have no knowledge on this field.. and all i want is to secure my site from anything that could happen to site.. from everyway hackers or bots attacks site..

so if there is no need for aiowps plugin and you are sure i don’t have to use it.. if wordfence will protect my site from anyway that plugin protect it.. then i will delet aiowps and take a breath that my site is protected.

for what i know there is prevent copy and right click on that plugon which is the most thing i appreciate.. plus recapcha.. even that i the math recapch don’t show or make problems with the theme and custom sign in..

that’s what i may say is the difference.. but in real security way i really don’t know the difference between the two of you and them.

ps: i was having problems with 2fa and that’s why i asked if the plugin have issue with wordfence.. but i’m not sure if it is cause there is no 2fa in aiowps

yes i have.. about plugins i have extended social login, ultimate member, theme login popup sign in, WooCommerce too..

i think all those is connected to log in

there is something too i faced in the last week.. i use bluehost as hosting.. they have 2fa too for the account on bluehost.. i 2as using it in the past weeks and it was working.. until the day i used wordfence.. in the day after using it.. it didn’t work “2af in bluehost”.. and i had to turn it off.. and then to use it i had to choose the email to get the code..

It was using the same Google authenticator.. and what happened in that time with Bluehost is the same to what happening now on my acconts on wp who is activating 2fa

• This reply was modified 1 year, 7 months ago by majito.

• Details: A test request to this website was detected on a different value for this setting. IP blocking and live traffic information may not be accurate. Get More Information(opens in new tab) This site appears to be behind a front-end proxy, so using the X-Real-IP HTTP header will resolve to the correct IPs.

that is on scan log

ok now i understand,

the password then will be the same as the same as the password in the they signed in?

as i don’t have experience or knowledge on coding. i will keep everything as it is

but the question is when there is a member who want to sign in how he will know his user name?

edit: i found a notuce on wp settings that it’s not suitable for my site to use that settong as i have back not fronted or something like that so i changed it to: ??Use the X-Real-IP HTTP header. Only use if you have a front-end proxy or spoofing may result.

the notice is gone now

like that is everything alright with me.. will i be blocked again?

should i turn on this: Immediately lock out invalid usernames? .. on again? or keeping it off?

hi, there is 2 options for proxy.. i use ezoic proxy,, which one should i use?

i’m using now :??Use the X-Forwarded-For HTTP header. Only use if you have a front-end proxy or spoofing may result.

it has correct ip

the deafult :??Let Wordfence use the most secure method to get visitor IP addresses. Prevents spoofing and works with most sites.?(Recommended)

was catching wrong ip

about this, i didn’t understand:

Then head over to?Wordfence > All Options > General Wordfence Options > How does Wordfence get IPs?and reference the area under that section that says?Detected IPs?and?Your IP?with this setting. See if any of the options there when picked accurately reflect your IP. If one does, don’t forget to hit the?SAVE CHANGES?button in the top-right after you’re done.

i found the id but what after that?

Immediately lock out invalid usernames?are off… i turn it off

hi,

to be clear, i need a way to change user names as an admin of my site,,

it’s not helping to contact another plugin cause what i need is connected to this plugins as user names is part of ultimate members account.

is there a way i can change it for members i have on my site?

i didn’t get you.. what do you mean by paid extinction?

do you mean the social media log in? It’s a free plugin called:

nextend social login

and that also is already done for all members.. i activated it when i downloaded the plugin in the first time.

do you think those accounts maybe was signed up using social media? As i have that option on my site

the weird thing is that it’s already forbidden!

i deleted the user with admin name and made anothe account for him with his real name as a user name.. hope i didn’t made an acoount for a bot like that..

aboyt other people with random characters i will say it’s a bot if i didn’t saw some of that names on the real world.. usually bot don’t understand our language well and it’s too hard to fabricate a name that we can’t suspect it as a bot.. plus all of them has a photo! Can bot make a photo for the account with a full name in a language that it’s not english?

that is the weird thing that i can’t understand!

— i have security plugins like ithems which when the accounts was there.. plus all in one security which have hidden thing put for discovering bots in log in

i have recapach too for some parts on site.. put adding it on log in and sign up is making problems with the sign in forum in my theme..

i now have wordfence too.. i don’t think it’s bot after all that.. so.. i don’t know

andrewshu

(@andrewshu)

can I have a solution from the um team? not from others?

it worked with the extension?but if you give me an official solution i think it will give me much relief.. as i will be sure it will not affect my site in any way in future