Guest Steve.Thompson Posted November 20, 2008 Share Posted November 20, 2008 Hi All. I'm running CC 4.2.3 One of my customers is receiving this error message when trying to log in: "Authentication blocked for 10 minutes for security reasons." This message has lasted for days so far, not 10 minutes. He has requested password reset but still receives this message. I have reset his password from the Admin menu but he still receives this error. Any suggestions please, apart from deleting the account and starting over? Thanks, Steve. Quote Link to comment Share on other sites More sharing options...
Guest Brivtech Posted November 20, 2008 Share Posted November 20, 2008 Has he tried clearing his browser cache? Clearing cookies? Using a different browser? Quote Link to comment Share on other sites More sharing options...
Guest Steve.Thompson Posted November 24, 2008 Share Posted November 24, 2008 Has he tried clearing his browser cache? Clearing cookies? Using a different browser? Yes, yes and yes. This problem cleared after about 4 or 5 days, was ok for a few days, now it's happening again. Does anyone have any other suggestions. Thanks, Steve. Quote Link to comment Share on other sites More sharing options...
Guest gis100 Posted November 26, 2008 Share Posted November 26, 2008 Find ini.inc.php in your Cubecart root folder and changue the next settings near line 35 to allow a less restrictive ip blockings: ## Brute Force Protection $ini['bfattempts'] = [b]15[/b]; ## Allowed number of login attempts $ini['bftime'] = [b]180[/b]; ## Number of seconds to prevent login for 15 attempts and 180 seconds are the settings I setup for my store, just copied and pasted. I hope that it works for you! Quote Link to comment Share on other sites More sharing options...
kyle Posted December 11, 2008 Share Posted December 11, 2008 This just happened to me today. CC 4.3.0. I haven't tried the code edit to fix it yet. Quote Link to comment Share on other sites More sharing options...
Guest Alex Rodriguez Posted January 18, 2009 Share Posted January 18, 2009 I have tried this modification on my installation and the site is still not letting me login to my test account. When I tried after the change in the PHP code, the message read "Authentication blocked for 3 minutes for security reasons." so the site detected the change from 600 seconds to 180 seconds but I still can't login. I'm using "force SSL" on my site. Find ini.inc.php in your Cubecart root folder and changue the next settings near line 35 to allow a less restrictive ip blockings: ## Brute Force Protection $ini['bfattempts'] = [b]15[/b]; ## Allowed number of login attempts $ini['bftime'] = [b]180[/b]; ## Number of seconds to prevent login for 15 attempts and 180 seconds are the settings I setup for my store, just copied and pasted. I hope that it works for you! Quote Link to comment Share on other sites More sharing options...
Guest RenateH Posted January 21, 2009 Share Posted January 21, 2009 I'm on v4.3. I have this suddenly happening to me. It's only on ie7 here. I don't have it on firefox or ie6 Quote Link to comment Share on other sites More sharing options...
Guest RenateH Posted January 24, 2009 Share Posted January 24, 2009 I have it too but only on IE7. Firefox and IE6 work. I can't sign in at all in IE7. Oddly, I also have a customer complaining that IE7 is acting very peculiar - won't let her add products, sometimes won't let her even see any products, won't let her check out. I've had to process her order manually after a week of trying to get it to work Quote Link to comment Share on other sites More sharing options...
jsgypsy Posted March 31, 2009 Share Posted March 31, 2009 I am currently having this problem with a customer not being able to log in. I tried the fix as above, but it is only changing the amount of time she has to wait. She only just put in an order without problem over the weekend, but now she wants to log in to view the status of her order but it's not letting her. What is actually causing the problem? a cookie? the store? her browser? Would changing the time between logins to zero help anything? I LOVE cubecart, but sometimes these little issues really bug the heck out of me. :wacko: Quote Link to comment Share on other sites More sharing options...
Guest Simon Dolenec Posted April 7, 2009 Share Posted April 7, 2009 what the heck ARE YOU DOING? I used I fraking day to compare files and to renew my store from 4.2.3 to 4.3.1 - I have heavly modified store and then... account disabled for 10 minutes... no matter what I do with ini.inc.php... BACK TO 4.2.3 everything what I know is that you take my precious time for what, NOTHING... fix THIS!!! why should I try to lock some potential customer??? that is insaine.. + when I succesfully loged in it logged me out when I click on shopping cart... + I can't call 4000 customers to clear browser cache... some customers even don't know what is that... be serious... Quote Link to comment Share on other sites More sharing options...
Guest algisn Posted April 15, 2009 Share Posted April 15, 2009 I'm having exactly the same problem.. Quote Link to comment Share on other sites More sharing options...
tomoharu Posted September 19, 2009 Share Posted September 19, 2009 Is this issue still happening to some? I just re-reinstalled the latest version a couple weeks ago, and this problam is affecting many existing customers. They get pretty frustrated, and I have no answer for them. Have spent many hours at work fruitlessly sorting through and trying to adjust sessions-related files. Quote Link to comment Share on other sites More sharing options...
Guest kdlang Posted September 21, 2009 Share Posted September 21, 2009 I have the same issue. Anybody knows a possible solution because for me this is very important. Many thanks Quote Link to comment Share on other sites More sharing options...
eriknv Posted November 28, 2009 Share Posted November 28, 2009 I had the same problem and changed the settings in the ini.inc.php to ## Brute Force Protection $ini['bfattempts'] = 155; ## Allowed number of login attempts $ini['bftime'] = 0; ## Number of seconds to prevent login for Now the problem is solved.... ;) Quote Link to comment Share on other sites More sharing options...
Guest Chelsey Posted January 23, 2010 Share Posted January 23, 2010 I had the same problem and changed the settings in the ini.inc.php to ## Brute Force Protection $ini['bfattempts'] = 155; ## Allowed number of login attempts $ini['bftime'] = 0; ## Number of seconds to prevent login for Now the problem is solved.... perfect, solved for me thanks! :) Quote Link to comment Share on other sites More sharing options...
Guest Roger Huston Posted January 26, 2010 Share Posted January 26, 2010 Remember, changing these settings allows hackers to use scripts to try and brute force their way into your site. Perhaps people were getting these errors they were being attacked by a brute force attack? - Roger Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.