markmelch

No. Just overwrote. But attempting delete first then reinstall…

Recent and only on subdomains. Have manually reinstalled WP, deactivated all plugins, repaired/optimized DB, etc. The root and another WP install on the server are OK.

Host (WestHost) claims nothing on server has changed and all is working from their side.

Zilla… the author of Bullet Proof Security has some good info at https://altlab.com/hotlinking.html

I’ve got a similar issue. Images at root are OK but images in subdomains are broken because they seem to not be recognizing mime type.

See:
https://holyfamily.org/wp-content/blogs.dir/3/files/2012/08/pie-chart.jpg

vs:
https://youthministry.holyfamily.org/files/2012/08/pie-chart-150×150.jpg

One of my sites had the same problem today. Plus the galley slideshow was not showing and the placer was indicating no javascript loading.

I activated the Twenty Twelve theme and toolbar and gallery slideshow were OK. When I reactivated my theme and reloaded a page, the toolbar and gallery slideshow were OK again.

Perhaps your fix will be as simple.

Here are my slp settings:

a:4:{s:6:”enable”;s:1:”1″;s:12:”redirect_url”;s:14:”mysite.org”;s:8:”question”;s:6:”ques”;s:6:”answer”;s:3:”ans”;}

Are the numbers after “s:” supposed to match your example?

I will but I may not get to it until next week… I’ll keep you posted.

Dan, I did delete the pluging, assured the tables were gone, then reinstalled via network/plugin-install.php, network activated.

Once activated I got the same result, multiple emails as described above… 0 attempts on all subdomains. Unfortunately I have no time right now to do any debugging so the plugin is inactive right now. If I can revisit it I’ll let you know.

Thanks for your concern.

I cleaned the DB and reactivated AND was able to log in. Then I got 44 emails for each subdirectory with the following info:

Your website, A, is undergoing a brute force attack.
There have been at least 0 failed attempts to log in during the past 120 minutes that used one or more of the following components:
Component Count Value from Current Attempt
———— —– ——————————–
Network IP 0 203.183.81
Username 0 admin
Password MD5 0 a287052406e90e2b54c51549a4a14986
=======================================
Your website, B, is undergoing a brute force attack.
There have been at least 0 failed attempts to log in during the past 120 minutes that used one or more of the following components:
Component Count Value from Current Attempt
———— —– ——————————–
Network IP 0 203.183.81
Username 0 admin
Password MD5 0 82fd14149e871ed46361b41d4e0c7b05

Another option is to put the plugin files back, activate, …

When the plugin is active I cannot log in. I was dropping wp_login_security_solution_fail, but didn’t know about the meta_key and option_name. I’ll clear those and give it a try with the error logging on.

Thanks.

Thanks Dan. I also realized I could deactivate a plugin, update it and then reactivate it, thus providing a record of the action(s) in “Simple History.”

My bad. Solution is to turn off ‘FORCE SSL’