Locking out login

  • Resolved pattycake

    (@pattycake)


    8 months, 1 week ago

    When an attempt is made by a hacker or whatever, Wordfence locks out the person’s name that was tried but, is there a way that it locks out the IP address instead of the username that was attempted? Maybe a setting that I have somehow missed ??

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support wfphil

    (@wfphil)

    8 months, 1 week ago

    Hi @pattycake

    Our plugin never blocks a username, it only blocks the IP address. Please see our guide below:

    https://www.wordfence.com/help/firewall/brute-force/

    Thread Starter pattycake

    (@pattycake)

    8 months, 1 week ago

    This is what threw me into thinking that just the username was being locked out:

    “A user with IP address 176.249.218.126 has been locked out from signing in or using the password recovery form for the following reason: Used an invalid username ‘license_admin2’ to try to sign in.”

    Thank you for the clarification

    Plugin Support wfphil

    (@wfphil)

    8 months, 1 week ago

    Hi @pattycake

    Thank you for the update.

    That is for the rule Immediately lock out invalid usernames.

    Just so you know we recommend that you don’t use this option if you have a lot of registered users on your site as outlined in our documentation.

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Locking out login’ is closed to new replies.