Support » Plugin: Login LockDown » Database Tables keep getting bigger and bigger for this plugin

  • Resolved einstem

    (@einstem)


    I installed this plugin a few months back which i really like.
    It looks like it installed two tables into my wordpress database:
    lockdowns
    login_fails

    These tables are getting bigger and bigger since they seem to log every failed login and all lockdowns to my site.

    Is there an option for this plugin to “flush” the old ones, maybe every few months, so that these database tables do not just keep getting bigger.
    Or, can I just go in and delete several thousand old table entries?
    Will that break anything?

    Thanks.

    Michael

    https://wordpress.org/plugins/login-lockdown/

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author mvandemar

    (@mvandemar)

    @einstem – I need to add that feature in. When I first built the plugin the bot brute force attempts were not as pervasive a they are now. You can truncate the tables and it will not hurt anything, although any currently locked out ip’s will be freed up. That’s not a big deal though, as it only gives them 3 more attempts before locking them out again (assuming the settings are at the default).

    -Michael

    OK.. Thanks for the info.
    So, sounds like I can trim these tables if I want.

    But, do I understand that these tables are used so that any ‘subsequent’ attempt to login from these IPs will be automatically denied?

    So, is the “lockdowns” a list of IP addresses that will be permanently denied?

    And how about “login-fails”? Is that also a list of IPs that will be permanently denied?

    Just trying to understand how these tables support the plugin and what happens if I end up “trimming” them.

    Thanks.

    Michael

    Plugin Author mvandemar

    (@mvandemar)

    The logic is time based, and is determined by the settings in the dashboard. The default is that if they make 3 failed attempts in 5 minutes, they get locked out for 1 hour. Therefore, deleting ip addresses from the attempt table that are more than 5 minutes old, or deleting them from the lockdown table that are more than an hour old, really will have no effect. Of course, in the future versions that logic will change somewhat, but I also plan to build in cleanup routines so you won’t have to worry about doing it manually.

    -Michael

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Database Tables keep getting bigger and bigger for this plugin’ is closed to new replies.