Usage Clarification, please

1) Not at this time, although I could possibly add that in a future version. There is an issue currently, that I forgot to fix, where there is an upper level max, and going above it will cause some unexpected behavior. I can’t remember what the threshold is, but I had a client set that time period to higher than what the system would recognized (due to either server or mysql constraints, not my code), and it was treating the number as negative.

Keep this in mind though: 350 million seconds, which I am pretty sure the system can handle, is over 11 years of locking someone out. Most people will give up trying to log in long before that expires.

2) Correct, the system only records failed logins currently. I could add that feature in, but I would want to record those separately from the automatically logged out ones. I will see if I can get that added in the next release.

-Michael

Thank you for the follow up.

11 years of locking someone out. Most people will give up trying to log in long before that expires.

This is of course assuming the intruder isn’t a bot, in which case 11 years is nothing, eh? ??

It would be great if there could (as some point) be the option of manually adding individual IP’s and a range of IP’s. The folks I am working with have another utility installed (Sucuri, which also has no option for manually adding to the block list) which is supposed to generate permanent IP blocks but the site has been hit repeatedly from several IP addresses and to date they have not made the automated block list in the Sucuri plug-in. Thankfully, your utility seems to be working as intended, adding the villians whereas the Sucuri plug-in is not.

Thank you for the utility.