Immediately lock out invalid usernames

  • Hi I have enabled this feature. It worked well until a few days ago.

    But it is not working right now and there is a lot of attack on my site.

    When I test myself, I am immediately blocked but those who attack are not blocked.

    They all come from one type of operating system and a lot of ip attacks

    Mozilla / 5.0 (X11; Ubuntu; Linux x86_64; rv: 62.0) Gecko / 20100101 Firefox / 62.0

Viewing 7 replies - 1 through 7 (of 7 total)

  • Hey @hamidsna,

    Can you please share screenshots of the attack attempts with the Details expanded in Wordfence > Live Traffic?

    Please let me know.

    Thanks,

    Gerroald

    Thread Starter hamidsna

    (@hamidsna)

    @wfgerald

    I get a lot of brute force attacks. I enabled this option to easily prevent these attacks. But now it doesn’t work for the ip’s that are attacking.

    I tested with different IPs it blocks immediately.

    But apparently a bug has been found that does not block

    View post on imgur.com

    View post on imgur.com

    View post on imgur.com

    View post on imgur.com

    View post on imgur.com

    View post on imgur.com

    • This reply was modified 4 years, 9 months ago by hamidsna.

    I’m having same issue with it not blocking and same attackers.

    Disabled all my other security related plugins and still not blocking. Having to manually block in the meantime.

    Thread Starter hamidsna

    (@hamidsna)

    @wfgerald
    Hi
    You checked

    Hey @hamidsna,

    Can you send me a Diagnostics report so I can get a better overview of your environment? Please navigate to Wordfence > Tools > Diagnostics. Here you can select SEND REPORT BY EMAIL. Please include your www.remarpro.com username and update this thread after you’ve sent it.

    The users will be allowed to try to login again after the block expires, which is determined by the amount of time you have set in Wordfence > All Options > Rate Limiting > How long is an IP address blocked when it breaks a rule.

    It is possible you saw them get blocked, then their block expired, then they again tried to log in with the name, got blocked, etc.

    I would set that to a few hours and then when you see a login attempt with a prohibited name, check the Wordfence > Firewall > Blocking area for that IP.

    Thanks,

    Gerroald

    Thread Starter hamidsna

    (@hamidsna)

    @wfgerald I sent for you.
    Yes I checked all this but there is still a problem. The attacker will not block at all.

    Attempts to log in with [asDomaincom] users, domain name, seller, shop, etc. But it doesn’t block.

    These users do not exist on the site. And this ip that tests doesn’t block at all

    Interestingly, it only tries to log in once every few hours, maybe that’s why the plugin doesn’t detect

    Thread Starter hamidsna

    (@hamidsna)

    @wfgerald
    Hi
    You checked
    These attacks have slowed down my site and the plugin is not working, what’s the problem

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘Immediately lock out invalid usernames’ is closed to new replies.