Not blocking incorrect passwords?

  • Resolved AKCarlow

    (@akcarlow)


    10 years, 4 months ago

    Hmmm. At about 16:40 today someone (something?) tried to log in to our site with userid “Austin”. As this doesn’t exist, the IP address range was blocked – I got an email, and the IP address range shows on the WP Security locked out IP address list.

    Over the next 10 minutes there were about 300 further login attempts, using 2 existing userids, from the same, locked out, IP address. These show up in the plugin WP Activity’s log. Should these repeated attempts have triggered further lock outs? Should they not be blocked before getting far enough to trigger an entry in the WP Activity log?

    Using v3.0 of AIO.

    http://wordpress.org/plugins/all-in-one-wp-security-and-firewall/

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Contributor wpsolutions

    (@wpsolutions)

    10 years, 4 months ago

    What value is your “Time Length of Lockout” field set to?

    Over the next 10 minutes there were about 300 further login attempts, using 2 existing userids, from the same, locked out, IP address. These show up in the plugin WP Activity’s log.

    Are you referring to this plugin’s activity log or some other plugin?

    If it is this plugin, then anything which shows up in the activity log means that it was a successful login event.

    When the above entries were being recorded did you also check the “Currently Locked Address Ranges” table in the Login Lockdown tab to see if the IP address range was indeed still locked out?

    Thread Starter AKCarlow

    (@akcarlow)

    10 years, 4 months ago

    The lockout time length is set to six hours – when I saw the 300 entries in the log, the lockout was still active. The log is provided by a plugin called WP Activity.

    Plugin Contributor wpsolutions

    (@wpsolutions)

    10 years, 4 months ago

    I can’t speak for other plugins and I’m not sure what the plugin you suggested does, but I can say that if you are not seeing any login activity logs in our plugin’s display then the IP address range is being blocked successfully.

    Should these repeated attempts have triggered further lock outs?

    If the lockout is still currently in effect as you are suggesting, then the plugin doesn’t need trigger another lockout.

    Thread Starter AKCarlow

    (@akcarlow)

    10 years, 4 months ago

    OK, thanks. I had installed WP-Activity before finding yours, and had kept it as it can also log posts, comments etc, but really yours makes it redundant – I’ll uninstall it.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Not blocking incorrect passwords?’ is closed to new replies.