WordPress App blocked by captcha

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author bestwebsoft

    (@bestwebsoft)

    8 years, 6 months ago

    Hi,

    Thank you for contacting us!

    Could you please provide a link to your “WordPress App”? Since it is not clear what you are talking about.

    content.de

    (@contentde)

    8 years, 6 months ago

    Access via all XMLRPC Requests is blocked. Affects the WordPress Android App (https://play.google.com/store/apps/details?id=org.wordpress.android&hl=de) as well as any other XMLRPC implementations, trying to access http://www.yourwordpress.com/xmlrpc.php

    • This reply was modified 8 years, 6 months ago by content.de.
    Plugin Author bestwebsoft

    (@bestwebsoft)

    8 years, 6 months ago

    Hi,

    Wordpress App requires XML-RPC enabled on your site. This way, WordPress allows unlimited login attempts through the login form, XML-RPC or by sending special cookies. This allows passwords to be cracked with relative ease via brute force attack.

    Google reCAPTCHA by BestWebSoft requires any user to submit reCAPTCHA, so XML-RPC login attempts will fail as no reCAPTCHA answer is provided. We cannot pass XML-RPC attempts as of security purpose, but you can add the IP of your device to the whitelist.

    Let us know if you have any additional questions.

    Thread Starter zjzeit

    (@zjzeit)

    8 years, 6 months ago

    Thank you! I’ll just keep it white-listed for my home-ip, and that solves the use-case that is most common.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘WordPress App blocked by captcha’ is closed to new replies.