My site: "You have been locked out due to too many login attempts."

I was having the same issue. I verified with support that you cannot do this. In my case, my theme was trying to access old file names (this plugin can NOT change theme files) so due to my slider trying to access old URL paths, I was getting locked out on my first attempt to log in.

The cure, according to when i contacted support – is to simply reinstall your WordPress from scratch and omit this plugin.

Fortunately my hosting solution automatically backs up my site and databases so as long as you made backups also you should have no problem rolling back to just before you installed the plugin.

“The cure, according to when i contacted support – is to simply reinstall your WordPress from scratch and omit this plugin.”

I’m sure this isn’t the solution!

Check if you have “IPv6 enabled” with your internet connection (box or modem), if you have it, the best thing is to disable IPv6. Is the only manner to white list your IP with this plugin!

This is not the solution

Go to the database and look for table itsec_lockouts

remove the corresponding entry (your ip). If it’s not there, remove where the ip is blank. I just did that today.

You’ll still have FTP access, so connect to your site and move, rename or delete the better-wp-security folder from wp-content/plugins.

Then try again to login.

Hey All,

Perhaps this might help – https://www.ads-software.com/support/topic/releasing-ithemes-security-lockouts?replies=1

Thanks,

Gerroald

I had the same problem – I just removed the plugin (better-wp-security) from the plugins folder (FTP or Cpanel)!

You don’t need to reinsatll the site!

Good luck.

Gosh! Is this the same for me I wonder? I get emails suggesting that login attempts are being made from all over the world as I get their IP addresses. So they are not attempting to login in at all – is that what your saying?

Hi Guys,

I had this problem and I couldn’t find my IP in table xxxxxxx_itsec_lockouts`

Just deleted all rows from that table and I was able to log in to dashboard.

Greetings.

…and I discovered that my lockout was without IP address – blank field ‘lockout_host’.
Now, I added myself to WhiteList but I will keep eye on what will happen after whitelist period expires and that is 24h.

I just nuked all the rows from that table too. I hadn’t logged in to the site with the problem in more than a month.

Have always been able to log in before, but now. with the table empty – and there were no IPs in it to start with, I couldn’t log in.

Guess what? Now the table has one new record in it.

This is looking more like a bug every minute.

Hi everyone, it’s been happening and now the same thing after 1 month ago that I can’t log in on dashboard (too many bad logins).
Searched all rows, there was no my IP, again.

Tried with removing rows without IP – didn’t help.
Had to remove all rows then to be able to access dashboard.

Best regards.

I’m having a similar issue. My ip was whitelisted but got banned. i can still reach my site through my backup network.
Checked the .htaccess and couldn’t find any banned host.
The dashboard doesn’t show any either..
but the security log does show that my ip was banned.. not sure where to unban it from since it’s not showing up in the banned host list.