1and1 WordPress Issue: Redirect to 127.0.0.1

My web host, 1and1, are currently redirecting all wordpress login attempts to 127.0.0.1 by sending a 302 redirect to all requests to wp-login.php – I can only post this via my iPhone… It seems wordpress for many of us using 1and1 is therefore currently uneditable. The blog itself is up, mind you.

[ later ]

The issue now seems to be resolved, thankfully.

One of the comments to this post suggests editing wp-admin.php, which sounded ideal, but my install doesn’t have such a file. It’s possible yours does, maybe if it’s not been updated for a while, and that this workaround could work. I say this because I suspect this is going to happen again in the future.

Why? Well, from a bit of googling around, it looks like there’s a chance that 1and1 (and other hosting companies) are using this tactic to reduce load on their systems when they are under a DDoS attack, potentially a specific DDoS attack which is targetting WordPress installations. Unfortunately, there was no such attack on my site, but that doesn’t mean that other sites hosted by 1and1 were also unaffected, and there’s little chance of getting much info out of them about it. Personally, I doubt it’s a DDoS attack intended to bring down the hosting company – I’d have thought it’s more likely to be a script kiddie attempting to brute force their way in to as many blogs as they can. But either way, an attack of some kind appears likely.

All in all, though, I’m not going to suggest that 1and1 are terrible and start investigating other suppliers; I’ll be honest, these guys are pretty damn stable, and their actions yesterday only prevented me from adding posts via my browser, while the blog itself was up the entire time. And it’s working fine today. If this starts to happen regularly, then yeah, I’ll start to get annoyed, but as things stand right now, it’s no biggie.

2 thoughts on “1and1 WordPress Issue: Redirect to 127.0.0.1

  1. This is happening to me too. I have 3 sites of my own there and I cannot get to any of them. I really hope they let us log in soon. Its driving me nuts!

  2. I have solved the problem for me anyway.

    1and1 appears to have the file wp-admin.php on an 301 redirect.

    DO THIS: download via FTP “wp-admin.php” and rename it to something different (like wp-admin22.php)then modify the files contents by searching for and changing all references in that file from “wp-admin.php” to the new mame of the file. re-uload it to your root of WP and hit that file with your browser and I think you will have access…..I did!!

    FOLLOWUP:

    I have found that after logging in with this method, so long as you do not log out…you have access to your control panel by just going to the sites regular url. Another words you can delete the file you uploaded.

Leave a Reply