Wordfence blocks password reset mails from logged in admin

  • Resolved Chris

    (@bundfegadmin)


    3 years, 2 months ago

    Hi there,
    i was just resetting all user-passwords (to make it safe) and sending password-reset-mails (for user-convenience ?? ) after a probable successful bruteforce.

    But wordfence blocks me (logged in as admin) after sending 4 password-reset-mails. I have to unblock me to send all mails (and there is no error-message just a red bordered box when I try).
    Under firewall – blocking – ip address is following notice:

    Exceeded the maximum number of tries to recover their password which is set at: 5. The last username or email they entered before getting locked out was: ''

    Can wordfence check if someone is logged in, when trying to send password-reset-mails?

    Greetings,
    Chris

    • This topic was modified 3 years, 2 months ago by Chris.
Viewing 2 replies - 1 through 2 (of 2 total)

  • Thanks for reaching out.

    That’s a great suggestion and I’ll pass that along. In the meantime you could set Lock out after how many forgot password attempts to 500 and then change it back once you are done as a work around.

    Tim

    Thread Starter Chris

    (@bundfegadmin)

    Hi Tim,

    thanks for the good idea, weren’t that many, opening the ticket was definitely only for the others with the same problem ??

    Chris ??

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Wordfence blocks password reset mails from logged in admin’ is closed to new replies.