Posted 2 years ago #
I have been locked out of my site for a day or so - some one or thing was trying to hack the admin - I have followed several password options including changing in the php admin.
Is there a way I can override this function in ftp or cpanel?
Cheers
Tim
http://codex.wordpress.org/Resetting_Your_Password#Through_phpMyAdmin
use this to see if a rogue admin has been added
Posted 2 years ago #
Thanks Samuel, I have tried that but it did not work. I waited yesterday for the account to unlock - Is there another way to sort this as I feel it is going around in circles.
ERROR: This account has been locked because of too many failed login attempts. You may try again in 24 hours.
Posted 2 years ago #
Is there a way to override the lock down?
WordPress doesn't impose a lock out as far as I know. Perhaps you're trying to login to your hosting account?
Posted 2 years ago #
I am definitely trying to log into my wordpress admin.
When I request my password reset it says it is invalid.
Someone or something was trying to access my login via the admin username - after too many attempts it locked out. That was yesterday. I reset the password in the database following instructions above but still did not work.
Is this a self-hosted blog or a wordpress.com site?
Posted 2 years ago #
Self hosted
Posted 2 years ago #
Should I try re-installing a fresh version of wp via ftp?
Posted 2 years ago #
http://blog.landscapedesign.co.nz/MIsc/Screenshot.JPG
This is a screen shot of what I get.
Once the 24 hour period is up - I still cannot get in despite carefully resetting the password in php admin. It would not let me verify the password and locked me out after 5 attempts. I have not got any additional plugins for security so this is from the normal wordpress set up.
The lock out message that you're seeing isn't any WP message that I know of (and I've just searched through all files). Did you install any security or login plugins?
Posted 2 years ago #
Ah - I do have login with facebook and a login widget running - perhaps that is the issue?
I will try removing that via ftp temporarily
Posted 2 years ago #
I have fb auto connect and theme my login plugins but have never seen any lock down settings.
Try resetting the plugins folder by FTP or PhpMyAdmin.
Posted 2 years ago #
I have sorted it! - it was the theme my login plugin which I have deleted from the face of the earth. Many thanks for your help. Much appreciated.
Regarsd
Tim
You're welcome. :-)
Posted 2 years ago #
the lock out is actually a feature of Theme My Login - you can change the settings for number of attempts and the lockout period - by default it is set to 5 attempts within 1 hour and lock out for 24hrs. You should actually create a new admin user account that is not called admin nor administrator and delete the default admin account...saves you from being locked out when someone else attempts to login to your admin account. If you do find yourself locked out and you are using theme my login, just use ftp to rename the theme-my-login directory, login, then rename it back.
This topic has been closed to new replies.
