Posted a reply to iThemes Security Site Scanner, on the site WordPress.org Forums:
That link is pointing to an old article when site scanning in the iTSec plugin…

Posted a reply to PHP message: get_cart was called incorrectly., on the site WordPress.org Forums:
Accoding to the 8.1.0 Changelog: Checked the code and I can confirm the invalid condition…

Posted a reply to Clicking save button not working, just loading and loading, on the site WordPress.org Forums:
If the WP_DEBUG constant is currently enabled in the wp-config.php file try and disable it.…

Posted a reply to File change showing whole file path, on the site WordPress.org Forums:
Ok, the content of your _site_transient_itsec_wp_upload_dir option (actually it’s a transient) looks good. I’ve been…

Posted a reply to File change showing whole file path, on the site WordPress.org Forums:
That is pretty much as expected. My previous instructions only targeted the error you were…

Posted a reply to File change showing whole file path, on the site WordPress.org Forums:
Since the 8.0.x release a button to manually start a new File Change scan no…

Posted a reply to File change showing whole file path, on the site WordPress.org Forums:
Yes, none of those (deprecated) settings are valid in the current plugin release (8.0.2). Since…

Posted a reply to File change showing whole file path, on the site WordPress.org Forums:
The error indicates an old and deprecated file change (boolean) setting (notify_admin) still exists. Something…

Posted a reply to File change showing whole file path, on the site WordPress.org Forums:
In addition to atxmatt’s questions: Are those long-filepath-file-changes limited to backupbuddy temp files, or is…

Posted a reply to Freemius warning – even after plugin fixed, on the site WordPress.org Forums:
Hi 4smartbiz, That is happening in the free iThemes Security (8.0.2) plugin or the premium…

Posted a reply to Two-factor authentication API service?, on the site WordPress.org Forums:
tsn = the site name So it’s just an abbreviation for my own convenience ;-)…

Posted a reply to Two-factor authentication API service?, on the site WordPress.org Forums:
As promised below the data that is send to the QR Code API: - the…

Posted a reply to Two-factor authentication API service?, on the site WordPress.org Forums:
As of iTSec (free) release 8.0 the Two-Factor Authentication (TFA) feature is no longer a…

Posted a reply to Two-factor authentication API service?, on the site WordPress.org Forums:
Hi, According to the Pro 5.9.3 (2019-03-12) Changelog: +++++ To prevent any confusion, I’m not…

Posted a reply to terrible UI, on the site WordPress.org Forums:
Yup, the UI needs some extra work. However the skip-wizard-just-get-me-to-settings button is definately there (Though…

Posted a reply to [iThemes Security (formerly Better WP Security)] No notification of vulnerable plugin, on the site WordPress.org Forums:
IMHO, yes scanning for known vulnerabilities (and auto update plugins/themes for fixes) is a Pro…

Posted a reply to No notification of vulnerable plugin, on the site WordPress.org Forums:
Hi Tom, You are using a recent and registered iTSec Pro plugin release ? Also…

Posted a reply to How disable fail login email notifications?, on the site WordPress.org Forums:
That is a known bug, which probably prevents you from saving the notification settings. According…

Posted a reply to How disable fail login email notifications?, on the site WordPress.org Forums:
Ah, ok. It’s about a temporary user lockout. Could be a symptom of a brute…

Posted a reply to How disable fail login email notifications?, on the site WordPress.org Forums:
Are you referring to lockout emails ? Screenshot ? Still in the dark here …

Posted a reply to How disable fail login email notifications?, on the site WordPress.org Forums:
This plugin does not send “fail login email notifications”. Wrong plugin/forum? +++++ To prevent any…

Posted a reply to Security pro, no login form, on the site WordPress.org Forums:
In that case please ignore my previous post. The correct navigation path to the correct…

Posted a reply to Security pro, no login form, on the site WordPress.org Forums:
The setting DenisCGN is referring to (Login with Email Address or Username) can probably be…

Posted a reply to 7256 file added!!! installed iTheme Security, on the site WordPress.org Forums:
Hi Silvia, Don’t worry. All files in wp-admin folder (and subfolders) are WordPress core files.…

Posted a reply to Exclude plugin, on the site WordPress.org Forums:
Hi, When enabled (Restricted Access) the iTSec plugin REST API setting hooks into the rest_dispatch_request…

Posted a reply to Refuse Compromised Passwords Setting Missing, on the site WordPress.org Forums:
FWIW, you can find the “Refuse Compromised Passwords” setting under the USER GROUPS menu option.…

Posted a reply to DB Backup, once a month, via email, on the same day, on the site WordPress.org Forums:
Yup, seems to work fine ;-)

Posted a reply to problems with wp downgrade, on the site WordPress.org Forums:
The plugin often (not always) states what minimum WordPress release is required in the Changelog.…

Posted a reply to DB Backup, once a month, via email, on the same day, on the site WordPress.org Forums:
Hi Marco, Yes, if certain conditions are met, I think it should be possible. Most…

Posted a reply to PHP message: get_cart was called incorrectly., on the site WordPress.org Forums:
Got my hands on the Woocommerce Group Coupons plugin. Found an alternative method to prevent…

Posted a reply to Unable to turn off File Change notifications, on the site WordPress.org Forums:
Oh, right. Just noticed atxmatt didn't mention to include the line below to the wp-config.php…

Posted a reply to Unable to turn off File Change notifications, on the site WordPress.org Forums:
Hi @anjanphukan, In addition to atxmatt instructions simply click on the Copy Error button. Then…

Posted a reply to PHP message: get_cart was called incorrectly., on the site WordPress.org Forums:
Hi @dev, Not a full solution but if you change line #792 in the better-wp-security/core/lockout.php…

Posted a reply to iTheme security using my old server public path, on the site WordPress.org Forums:
@timothyblynjacobs I noticed the nginx issue is indeed fixed in the new 7.1.0 Pappa Romeo…

Posted a reply to Security pro, no login form, on the site WordPress.org Forums:
What iTSec Papa Romeo Otto (the community is not allowed to post premium plugin related…

Posted a reply to No notifications, on the site WordPress.org Forums:
Hi, Yup, sounds like the “notification-center” part of the itsec-storage option (in the wp_options table)…

Posted a reply to 404 detection setting removed?, on the site WordPress.org Forums:
Hi Donnie, Please read the article named “iThemes Security 8.0 Brings New Design, Features” on…

Posted a reply to Export & Import Tools | Removed from Plugin, on the site WordPress.org Forums:
I thought you may be interested in the announcement below ;-)

Posted a reply to Can’t save changes to file change check exclusion list, on the site WordPress.org Forums:
Hi both, I’m willing to give it a go… First let’s enable an extra Debug…

Posted a reply to iThemes Security creates public nginx.conf file, on the site WordPress.org Forums:
Hi AITpro, Thank you for sharing that thought. I have run an nginx test env…

Posted a reply to Nonstop Security Digest Email Notifications and No Default Recipients[user_list], on the site WordPress.org Forums:
Ah, excellent. So it looks like the issue was in the iTSec plugin metadata as…

Posted a reply to Nonstop Security Digest Email Notifications and No Default Recipients[user_list], on the site WordPress.org Forums:
Ok, I see. A fresh install of iThemes Security won’t hurt. So go ahead and…

Posted a reply to Nonstop Security Digest Email Notifications and No Default Recipients[user_list], on the site WordPress.org Forums:
Thank you for your kind words. There was an issue in that area but according…

Posted a reply to Nonstop Security Digest Email Notifications and No Default Recipients[user_list], on the site WordPress.org Forums:
Ok, no problem. Meanwhile I've been looking at this top to bottom. All the Debug…

Posted a reply to Nonstop Security Digest Email Notifications and No Default Recipients[user_list], on the site WordPress.org Forums:
Ah right, that’s probably because the Debug page Save action performs the same sanitation/validation as…

Posted a reply to Nonstop Security Digest Email Notifications and No Default Recipients[user_list], on the site WordPress.org Forums:
Hi Jamisons, Finally a topic that includes all required data ! So that deserves some…

Posted a reply to Variables as args in translation function, on the site WordPress.org Forums:
Hi Jacob, Thank you for your feedback. Though I think you might be missing the…

Posted a reply to iThemes Security creates public nginx.conf file, on the site WordPress.org Forums:
The entry below (which is included) should protect the nginx.conf file from accessing it directly:…

Posted a reply to Uninstalling RCP lefts undeleted capabilities in database, on the site WordPress.org Forums:
RCP = Restrict Content Pro ? If so your topic is probably in the wrong…