BulletProof Security Forum

This additional Rewrite htaccess code below in Custom Code text box:  1. CUSTOM CODE TOP PHP/PHP.INI HANDLER/CACHE CODE needs to be deleted.  You already have https/ssl Rewrite code in Custom Code text box:  8. CUSTOM CODE WP REWRITE LOOP START.  I would need to see your actual 301 Redirect htaccess code in order to provide an answer.  Post that…[Read more]

Thanks for the explanation! Appreciated 🙂

You can either choose not to scan the database by changing this MScan option setting:  Scan Database > Database Scan Off or you can check the Ignore DB Entry checkboxes under the > View|Ignore Suspicious DB Entries accordion tab/button.  Ignoring db entries is the same as skipping them.

Regarding the difference between MScan and WPScan:  MScan is…[Read more]

Hi again,

I’ve been rolling out use of MScan across more of my client’s sites. I usually encounter a few suspect files and a handful or two suspicious database entries. But on one site, I’m getting what looks like hundreds of suspicious database entries. Most of them are flagging content that has “<iframe…”. This client’s site displays videos…[Read more]

Thanks for reply

Got it ;-). But my initial question was more like: could you extend the existing functionality?

Or do you think it could cause a security problem (not sure why it would) or be too complicated to handle because of the way you built it?

Yeah thought a language barrier thing might be going on. 😉 In layman’s terms, the way the JTC options work is whatever you type into the JTC option settings text boxes are literal meaning > Caps or other characters that you type in are case sensitive.  ie c does not equal C.

Sorry that’s a French to English understanding problem.

What do you mean by literal? And why do you refer to the tooltip?

I mean if I put “Enter [my password] or [My password]” as a tooltip but that the text field does not accept the two versions, it won’t help.

Well I think I explained it fairly well in my previous forum reply.  ie literal means literally literal.  😉

Sorry, it looks I wasn’t clear enough. I faced a problem when I entered the sequence of words that I defined to be the captcha.

Let’s say the captcha I defined in BPM is [my password] without the brackets.

When I wanted to log in from my mobile, I typed [My password] (with a capital M) BECAUSE my phone had automatically locked in the capital key…[Read more]

JTC is literal as far as the tooltip goes it’s literal meaning that whatever you type in for the password is literally the password itself.

JTC ToolTip:
This is the jQuery ToolTip message that is displayed to users when they hover or click on the CAPTCHA text box. This is where you will tell your users what they need to enter for the CAPTCHA. It…

[Read more]

As the JTC CAPTCHA is case sensitive, could you make sure that this is not the case for the first letter?

Why? Because on mobile, the keyboard often has the Maj key activated for the first letter.

Maybe a more flexible way of dealing with it would be to let us add the two versions if we want to. Something like that in the backend:

jQuery…[Read more]

Start with the WP troubleshooting steps here > https://wordpress.org/support/article/faq-troubleshooting/. Let me know if you need additional help.

Yeah this is a 1 on 1 thing.  Contact me directly:  info @ ait-pro dot com.  Been doing this stuff forever so yeah glad to jump and fast track it.  😉

Hi again Edward,

I managed to create a fully customized page using a free plugin and custom CSS.

I’m very glad to say that JTC fits perfectly!

However, I have a problem with the alert message displayed:
– by WP when there is a problem with the login/email and/or password,
– by JTC when there is a problem with the BPS captcha.

The alert block…[Read more]

Sounds like 3 possible problems, but they are fairly complex to diagnose.  So yeah going to need to login to your site and need FTP access to your hosting account.  Contact me directly via email:  info @ ait-pro dot com.

As long as you use the standard WP hooks then JTC will still work normally.  If you need additional technical help on customizing your login page let me know and I’d be glad to help you out with that.  It’s really pretty ez and quick stuff to do, but yeah stick to using the pre-built standards (hooks, filters) that WP has created.