Local Brut force protection not working | WordPress.org

Akee
(@krutakee)

9 years, 9 months ago

I am testing this plugin in my local network. I installed WP using private IP address (not using localhost) and I didn’t specify any IP in the whitelist. But when I tried incorrect login attempts from another IP address in my local network, the log says “A whitelisted host has triggered a lockout condition but was not locked out” and it won’t lock out the IP address.

Why is that? Is there default whitelist that I am not aware of? Again, my whitelist of the plugin is empty.

https://wordpress.org/plugins/better-wp-security/

Viewing 1 replies (of 1 total)

dwinden
(@dwinden)

9 years, 9 months ago

@akee

There are 2 whitelists. A temporary and a permanent whitelist.

If you have successfully logged in once as an administrator from the IP that needs to be locked out, that IP is automatically added to the temporary whitelist for the duration of 24 hours.

Use the following query from phpMyAdmin to check the temporary whitelist:

select * from wp_options where option_name = ‘itsec_temp_whitelist_ip’;

dwinden

Viewing 1 replies (of 1 total)

The topic ‘Local Brut force protection not working’ is closed to new replies.

Tags

iThemes Security

1 reply
2 participants
Last reply from: dwinden
Last activity: 9 years, 9 months ago
Status: not resolved