Someone change my Cloudflare account DNS without Login and two step Verification
someone chnage my DNS Record again and again, i am not sharing my login details to any one
18 Replies
i also use 2 Step verification in my Cloudflare account
Check the Audit Log: https://dash.cloudflare.com/?to=/:account/audit-log
Who is the User on those events?
![No description](https://answer-overflow-discord-attachments.s3.amazonaws.com/1233015243689431073/image.png)
only show my email account
only show my email address only
You aren't using a service like Ezoic, right?
no
no sir
How about API Tokens? https://dash.cloudflare.com/profile/api-tokens
please review sir
![No description](https://answer-overflow-discord-attachments.s3.amazonaws.com/1233016248422371350/image.png)
i am not using any API Token
What is the WordPress token doing there?
i am using cloud flare for just SSL Porpose only, i am use WordPress, but a am not create this API Token
i am using cloud flare for just SSL Porpose only, i am use WordPress, but a am not create this API Token
Maybe try Rolling this token, then seeing if the changes stop
You can also just delete it, but if it is keeping something else alive, you might want to be careful
So will this be created automatically for SSL for WordPress or has someone created it, because I have not created this token and I do not even know that Cloud Flare has created it myself.
Cloudflare Docs
Welcome · Cloudflare Automatic Platform Optimization docs
Take your WordPress site’s performance to the next level with Automatic Platform Optimizations (APO). APO allows Cloudflare to serve your entire …
That's the only Cloudflare product that does anything with WordPress(that I'm aware of anyway)
no
i am changing Roll Edit to Read only
for API Token
Yeah, then just keep an eye on if anything breaks
If it doesn't, then you should be safe to delete it entirely
no any change or break found in my site
my wordpress working fine
ok