Forbidden Access

  • chrishall57
  • Topic Author
  • Offline
  • Premium Member
  • Premium Member
More
1 year 2 weeks ago #9312 by chrishall57
Forbidden Access was created by chrishall57
Been getting denied access to one of my sites quite a lot recently. Couldn't get access via OTP either. Tried deleting the dynamic blacklist record but still happened. Eventually had to switch SCP off using phpmyadmin

Looking at the firewall logs this is the common entry:

User session protection :IP and User-agent have changed during an active session

Any ideas on why this is happening?

Please Log in or Create an account to join the conversation.

More
1 year 2 weeks ago #9313 by Jose
Replied by Jose on topic Forbidden Access
Hi Chris,

It's odd you couldn't get access using the OTP; does your user have the authenticator or yubikey enabled?

Regarding to what caused this, check the user session-protection feature. If the "elements to check in session hijack" is set to "IP or user-agent", you will be blocked if any of those settings change (for instance, if do you use two different browsers to access to the site with the same account). I recommend to set this value to "IP AND user-agent".

Regards,
Jose
The following user(s) said Thank You: chrishall57

Please Log in or Create an account to join the conversation.

  • chrishall57
  • Topic Author
  • Offline
  • Premium Member
  • Premium Member
More
1 year 2 weeks ago #9314 by chrishall57
Replied by chrishall57 on topic Forbidden Access
Thanks Jose, that seems to have sorted the problem. Ended up turning off SCP and resetting my password in phpmyadmin. OTP always enabled.

Had tried using different browsers and a VPN to switch ips but might just have been making things worse!

I can access the site now without grief!

Please Log in or Create an account to join the conversation.

More
1 year 2 weeks ago #9315 by Jose
Replied by Jose on topic Forbidden Access
Glad to hear you're in again :)

Regards,
Jose
The following user(s) said Thank You: chrishall57

Please Log in or Create an account to join the conversation.

Time to create page: 0.165 seconds
Copyright © 2023 Securitycheck Extensions. All Rights Reserved.

This site is not affiliated with or endorsed by the Joomla! Project. It is not supported or warranted by the Joomla! Project or Open Source Matters. The Joomla! logo is used under a limited license granted by Open Source Matters, the trademark holder in the United States and other countries.

We may collect your IP address and your browser's User Agent string while using our site for security reasons. This information is retained only until we check you're not trying to hack our website.