Feature request: show the user being locked out

Viewing 6 replies - 1 through 6 (of 6 total)
  • Thread Starter Marcelo Pedra

    (@kent-brockman)

    Nobody? This is a useful feature and it cannot be hard to code. It’s just about adding one variable to the reports. Please guys.

    I agree. I have been using a different plugin (Limit Login Attempts) and decided to try Wordfence today. This would be nice to have.

    Thirded.

    I agree with this feature request (fourthed) and posted my own copy of the feature request on the wordfence site’s Feature Request Forum. My post includes a simple patch to one line of lib/wordfenceClass.php that would include the username in the lock out emails.

    Changing from line 495 in lib/wordfenceClass.php from:

    self::lockOutIP($IP, "Used an invalid username to try to sign in.");

    to

    self::lockOutIP($IP, "Used an invalid username ({$_REQUEST['log']}) to try to sign in.");

    Will include the username used in the email. Note, it will of course cause Wordfence to complain about the Wordfence file being modified

    Thread Starter Marcelo Pedra

    (@kent-brockman)

    Very good job Nicholas. I hope Wordfence implement this soon, since too many of us manage several WordPress installations.
    Thank you for the support!

    Yes, I agree. It needs to include the attempted username, so you know whether your username has been added to any bot databases.

Viewing 6 replies - 1 through 6 (of 6 total)
  • The topic ‘Feature request: show the user being locked out’ is closed to new replies.