cookie based brute force

  • Resolved dolceremy

    (@centoasa)


    1 month, 3 weeks ago

    I have enabled this great system, but almost every time I change login, returning to the browser and station in my office I see page 127.0.0.1 and I have to rewrite the url with the secret word. Is this behavior normal? Or am I wrong something? I use a cache system on litespeed system but I believe that a url of the type https://www.pippopluto.com/?disney=1 is bypassed. Thank you

Viewing 1 replies (of 1 total)
  • Plugin Support hjogiupdraftplus

    (@hjogiupdraftplus)

    1 month, 3 weeks ago

    Hi @centoasa

    127.0.0.1 wp-admin only being redirected means you have enabled cookie-based brute force.

    You should try accessing the site using the secret word, like this: {site_url}?{secret_word}=1. This will save a cookie in your browser for 24 hours. After that period, it will start redirecting to 127.0.0.1, and you will need to access it again using {site_url}?{secret_word}=1.

    Regards

Viewing 1 replies (of 1 total)

You must be logged in to reply to this topic.