Hi please follow these instructions.
Thank you
Thread Starter
Capobis
(@ioweuiraosjfosj)
I just changed the htaccess file to its original:
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ – [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPress
And now I can login again to my dashboard via my secretword url. (I didn’t even have to disabled the AIOWPSF plugin.)
I saved a copy of my previous htaccess file, the one that was the problem to login.
My question now is: what to do now? I have this basic htaccess file, do I need to replace it by the previous one? Because I really don’t understand, everything was perfectly working previously.
Thread Starter
Capobis
(@ioweuiraosjfosj)
It was the last update of All In One Security plugin that modified (I don’t know what exactly) my htaccess file. Because one of my wordpress site that was not updated to wordpress last version but updated with last version of All In ONE Security had also the same problem.
Strange..
Hi, you can start enabling the security features in the plugin. Just be careful with the intermediate and advance options. Make sure you read the information carefully and you test before you enable any of the aforementioned features plus you should also create a back up just in case you get locked out again.
@Capobis,
The 403 forbidden sounds like it might be coming from one of the firewall rules or whitelist (if you have enabled it).
As mentioned by mbrsolution, do some tests by enabling firewall features one at a time to find which is causing your 403 result.
