Support

Admin Tools

#41715 Possible bug firewall never block protected users

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
5.2.5
PHP version
8.3
Admin Tools version
10.02.2025

Latest post by tampe125 on Tuesday, 18 March 2025 08:48 CDT

Friday, 14 March 2025 05:52 CDT

forcultibo

I want to inform you, that I got today a strange behavior from our website.

In the hardening options of the WAF I have one user as be "protected".
Strange: Today this user was blocked. I got no information about the blocking per mail as I usually get (I monitor all blockings).
After I unblock the IP adress of this user (asked per telephone) the problem was solved.

Perhaps you can have a look about this strange behavior at your servers.

I want to tell you about this because I had never problems with the AdminTool and be very satisfied with the software. Perhaps this hint helps if there is really a bug in the actual version.

 

Friday, 14 March 2025 09:17 CDT

tampe125

Hello,

can you please provide a bit more of information? What does it mean that it was protected? Which field did you fill?

Davide Tampellini

Developer and Support Staff

🇮🇹Italian: native 🇬🇧English: good • 🕐 My time zone is Europe / Rome (UTC +1)
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Sunday, 16 March 2025 03:57 CDT

forcultibo

Under ...administrator/index.php?option=com_admintools&view=Configurewaf

Hardening Options
There nearly at the bottom:

Protected users
 

Monday, 17 March 2025 09:49 CDT

tampe125

Ok, it's what I supposed. The option "Protected users" refers only to the feature "Prevent forgotten backend users from logging in". This means that if we were going to prevent login from a user that didn't login recently BUT he's inside the "protected" list, we allow it.

It does not refer to any other feature inside Admin Tools.

Davide Tampellini

Developer and Support Staff

🇮🇹Italian: native 🇬🇧English: good • 🕐 My time zone is Europe / Rome (UTC +1)
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Tuesday, 18 March 2025 02:59 CDT

forcultibo

Okay thank you for clarification.

Then remain the question why I didn't get the mail of this (for us) important  blocking of a super user  (mails of blocking for other IP addresses I receive).
That was strange for me too.

Hopefully it won't happen in future again.

Tuesday, 18 March 2025 08:48 CDT

tampe125

Ok, let me know if something like that happens again in the future

Davide Tampellini

Developer and Support Staff

🇮🇹Italian: native 🇬🇧English: good • 🕐 My time zone is Europe / Rome (UTC +1)
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!