To many login attempts emails coming through…

  • Hi there,

    Over the course of the evening and day today, I have been getting emails saying:

    “Dear Site Admin,

    A user, admin, has been locked out of the WordPress site at https://andreagibbs.com.au due to too many bad login attempts.

    The user has been locked out until 2015-04-25 09:02:21.

    To release the lockout please visit the lockouts page.

    *This email was generated automatically by iThemes Security. To change your email preferences please visit the plugin settings.”

    I am not the one trying to log in, but when I do I automatically get blocked from entering. I think some robot is trying to hack my WordPress site.

    How can I get in if I am constantly locked out of it?

    I have tried to click on reset password, but that leads to an error page.

    This is very frustrating. Does anyone have advice?

    Cheers,

    Andrea

Viewing 2 replies - 1 through 2 (of 2 total)
  • Bill

    (@chubbycrow)

    Security plugins typically have settings for how long the particular user is locked out for the failed log-in attempts, and for how many attempts are allowed. When that period expires, you can reset the period if you like, once you get access again.

    The bigger issue though, is that it sounds like your username is ‘admin’ and so you get locked out when this unwanted activity occurs. Best thing to do (if I’m right about that assumption) is to create a new user account for yourself with admin privileges. Then when you delete the ‘admin’-username account, you will be given the opportunity to assign content from that account to your new user. Once you do that, you can set a rule to immediately lock out anyone trying to use ‘admin’ to log in.

    Before doing the above, be sure to create backups of your site and especially your database, just to be safe.

    EDIT: If you don’t want to wait for the lockout to expire, have a look at this article from the plugin authors about how to get past the lockout:
    https://ithemes.com/security/fixing-ithemes-security-lockouts/

    Andrea:

    Follow Bill’s advice and the issue should get fixed. Unfortunately, it sounds like the admin account is being locked.

    You will need to wait until the account becomes unlocked and then login to create a new user.

    If the account keeps getting locked, you can create a new user through your MySQL database although this can be fairly technical if you have never used a database before.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘To many login attempts emails coming through…’ is closed to new replies.