IP for last login

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Author Bowo

    (@qriouslad)

    1 month, 2 weeks ago

    @skoen What is the use case for tracking the IP address used when users are logging in? In other words, what is it useful for? You did say “have a whitelist of IP addresses people can access the website from”, but once they’re logged-in using an IP address already on the whitelist, how is the IP address information useful?

    • This reply was modified 1 month, 2 weeks ago by Bowo.
    Thread Starter skoen

    (@skoen)

    1 month, 2 weeks ago

    One case would be if the account has been compromised you can see both when the user logged in and from which IP address, if it’s very different from which address they usually use, then you have that for a troubleshooting purpose.

    Plugin Author Bowo

    (@qriouslad)

    1 month, 2 weeks ago

    I see… but how can a compromised account be used to successfully log in from a non-whitelisted IP address?

    Thread Starter skoen

    (@skoen)

    1 month, 2 weeks ago

    Good question, but this is for other sites. I have had cases where someone have had the account compromised and we would look in the logs using a plugin like Activity monitor to check when the login happened, from where and what they did.

    Plugin Author Bowo

    (@qriouslad)

    1 month, 2 weeks ago

    @skoen so, by checking the IP address change on successful login, you conclude that an account has been compromised? Then go to activity logs to track what that compromised account has done since they login from the unusual IP?

Viewing 5 replies - 1 through 5 (of 5 total)

You must be logged in to reply to this topic.

Tags