• Resolved Webitseo

    (@webitseo)


    I’m the only registered user on my site, so there shouldn’t be anybody else trying to log in. So I’m thinking why allow as many as 5 attempts before locking out all attempts? My thinking is that if there is even 1 failed attempt, I’m locking that puppy down for the max time allowable. Is there any problem in doing this? (I added myself to the whitelist.)

    https://www.ads-software.com/plugins/botnet-attack-blocker/

Viewing 2 replies - 1 through 2 (of 2 total)
  • Thread Starter Webitseo

    (@webitseo)

    Does anybody know if changing the settings to locking down for 24 hours after 1 failed log in attempt will cause any problems? I don’t see the logic in giving the baddies 5 chances and then only locking them out for 5 minutes.

    Plugin Author cheesefather

    (@cheesefather)

    Sorry, just saw this. What if you typo your login from a different IP and then are locked out for 24 hours? I can add more options in the next release for systems with a single user ??

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Why 5?’ is closed to new replies.