Lock down after 1 attempt

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Contributor wpsolutions

    (@wpsolutions)

    This can happen if you enabled “Instantly Lockout Invalid Usernames”.

    Thread Starter callunairis

    (@callunairis)

    Ajj, yes… I did not realize I had that one checked. The problem though, when I try (or someone else tries) to log in with a typo in the username, it registers my IP and so I cannot even try and login with the correct username either… Is there a solution for that? Or will I just have to sit out the time period?

    Also, it would seem to me that someone who actually wants to do bad, will have multiple IP addresses ready to work with so lockdown on IP might not be solid, but it can cause a bunch of trouble with innocent typos… playing advocate of the devil here… any recommendations?

    Plugin Contributor wpsolutions

    (@wpsolutions)

    If you mistype your username the plugin will detect that as an invalid user if you have that checkbox enabled.
    There is no “solution” for that if you want that part of the feature active because the plugin is doing exactly as it is told.
    If you don’t want that instant lockout behaviour just disable the “Instantly Lockout Invalid Usernames” checkbox.

    will have multiple IP addresses ready to work with so lockdown on IP might not be solid, but it can cause a bunch of trouble with innocent typos… playing advocate of the devil here… any recommendations?

    Doesn’t matter how many IP addresses the bad guys use, they will still be locked out each time they surpass the retry count.
    You just need to make sure that you use strong passwords.
    You can also set the “Allow Unlock Requests” to unlock yourself.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Lock down after 1 attempt’ is closed to new replies.