• I contacted my server host for help because this plugin keeps telling me that my site is under possible brute-force attack.
    I change lockout settings to lockout for 4 days following a failed attempt, but this plugin’s log was still apparently filling up with failed attempts and lockouts for the same couple of accounts that shouldn’t have been possible if it was doing it’s job.
    So I provided a list of IP addresses to my server host, and they checked logs at the server level and said there was no sign that any of those IP addresses had attempted to log into the site.
    I uninstalled the plugin.

Viewing 1 replies (of 1 total)
  • Plugin Author wp-buy

    (@wp-buy)

    @thecelticcroft
    You should have verified this claim before you blame others.
    As you know, the plugin is open source, so we challenge you to extract for us a single line of code that generates random login attempts.
    Every unauthorized login attempt, we log it correctly and also log its username, password, ip, country, date and time.
    Another point, it is very normal to find many differences in the reports between the site control panel and the hosting data of the site, the reasons that lead to such differences are too many and this is not the right place to explain them.
    I invite you to seriously reconsider this review that harms us without any real proof from your side
    Thank you

Viewing 1 replies (of 1 total)
  • The topic ‘Lockout Option Apparently Not Working’ is closed to new replies.