Category: Troubleshooting
How to Fix The “Link you followed has Expired” error on WordPress
When trying to upload a (large) plugin or theme to your WordPress site, you might run into the message “The link you followed has expired”. This occurs because of the max. upload file size configuration of your WordPress installation, if the file you’re uploading exceeds this limit: this error could appear. How to find the current upload limit on your WordPress site You can view what these limits are currently set to, directly within the WordPress admin interface. This information
404 Not Found errors detected on your homepage
The 404 Blocking rule in Really Simple Security’s Firewall helps protect your site against malicious scanning attempts by blocking IP addresses that generate too many 404 Not Found errors while scanning your site for vulnerabilities (a detailed explanation is available here). If you see the following notice appear on the Really Simple Security Dashboard, this means that the plugin has detected 404 Not Found errors on the homepage of your site. In such cases, the plugin automatically deactivates the 404 Blocking
Using Really Simple Security with a custom wp-config.php file
Really Simple Security writes some rules to the wp-config.php file on your WordPress site, for instance, to load the Firewall and Security Headers. But it could be that your WordPress installation uses a ‘custom’ file, instead of the standard wp-config.php file on a standard WordPress installation. For example, the hosting provider Convesio uses a file called wp-convesio.php, and any changes that the Really Simple SSL plugin makes to the “standard” wp-config.php file would get overwritten & lost as a result.
Disabling LLA (Limit Login Attempts) when you are locked out
Really Simple Security Pro includes Limit Login Attempts functionality to protect your site against brute force login attacks. Repeated attempts to login using incorrect credentials will be blocked automatically. However, it could be that you’ve accidentally triggered too many invalid Login Attempts yourself, and that you’re (temporarily) locked out of your WordPress Account as a result. Renaming the really-simple-ssl-pro folder in the wp-content/plugins/ directory will allow you to regain access to the site; but as this would deactivate the plugin entirely,
Disabling 2FA when you are locked-out
Really Simple Security has the option to enforce 2FA (Two-Factor Authentication) to protect accounts from unauthorized access when your password is stolen. If for some reason you are unable to receive the required 2FA codes you will be locked out of your website. For example: You lost access to your phone with the TOTP (Authenticator) app, or 2FA was required for your account and the Grace Period to configure 2FA has expired. To disable 2FA in Really Simple Security and