Admin Lockout IP Address
-
Over the past week or so, I’ve had repeated alerts from WordFence that a user with IP address xx.xx.xx.xxx has been locked out, due to repeated attempts to log in with an invalid user name/password. This also locked ME out of my own site, and I was unable to get into the site, even with the admin email function. I understand that’s a separate issue, but interestingly, I do get the WordFence alerts at the same email. Not sure why the admin lock-out bypass is not working properly.
Once I was able to log-in, I changed the path from wp-admin to another directory, using a plug-in. When I log in to the back-end, the SAME IP address is reported as having logged in successfully. It maps to a googleusercontent.com IP, which is definitely not me, and matches the unsuccessful attempts to hack the admin.
So why is WordFence reporting that I am logging in using an IP address that continually tries to log-in, and is clearly not MY IP address?
Additionally, if I block that user IP at the host, it blocks me from logging in as well.
- The topic ‘Admin Lockout IP Address’ is closed to new replies.