Are you seeing this error when trying to log into your WordPress site:
WordPress Login Temporarily Disabled
We apologize for the inconvenience! You are seeing this message because your site has recently been targeted by attackers attempting to gain access to your WordPress Dashboard. In order to protect your site your WordPress Login page has been temporarily disabled. Unfortunately, you will be unable to login to the Dashboard until the block expires.
If you have any WordPress experience you probably think the problem is mostly likely caused by one of your WordPress plugins. The way to get around that is to use an FTP tool, like Filezilla, and rename the folder of the specific plugin you suspect is causing the problem. Alternately, you can simply rename the entire plugin folder ( /wp-content/plugins to /wp-content/off-plugins) as we did; shown in the screenshot above.
However, that is not the fix here. We noticed the URL was https://www.issueslab.com/mod-security-error/rule-13051.html which we did not recognize. After a bit of investigate with our hosting company’s technical support, it was determined that the hosting servers security was correctly blocked all login attempts.
The TEMPORARY fix was to log into cPanel, search for MODSECURITY (in the search bar at the top right), find the domain in question and set MODSECURITY to OFF:
You might think you are done here, but you really need to turn ModSecurity back on to ensure your sites safety.
We use WordFence and two other security tools to keep our sites safe by blocking the source IP address if there is more than two failed logon attempts within 20 minutes. However, we really want ModSecurity at the host level to be enabled.
There is not much you can do to stop these attacks, but you could install a free plug-in like WPS Hide Login to change the login URL from /WP-ADMIN to something else.
0 Comments