Login Verification email expiration (15 minutes) is too short

  • Resolved Q

    (@quinncom)


    5 years, 5 months ago

    When using Wordfence to protect wp-admin logins, it sends an email with a link that the user must click to complete the login. The email says, “This verification link will be valid for 15 minutes from the time it was sent”.

    This short duration is a problem for some users with mail servers that use greylisting, because they will not receive the email before the 15 minutes has expired. With greylisting, their mail server does a temporary reject the first time an email is received from an unknown sender. The message will be accepted upon the second delivery. The second delivery of most email servers is configured to occur about 15 minutes after the first attempt. Greylisting helps reduce spam, because many spammers will never make a second attempt at delivering a junk message. However, this means the users will sometimes receive mail with about a 15 minute delay.

    I would like to know if it is possible to configure Wordfence to increase the delay from 15 minutes to 30 minutes (or more)?

    If not, I’d like to file a bug report, as this is a breaking issue for some users (where do I file a bug report?).

Viewing 1 replies (of 1 total)

  • Hey @quinncom,

    Thanks for sharing this. I’ll share it with the Development Team for their thoughts. Depending on what they say I’ll either file a feature request or bug report.

    Please let us know if anything else comes up.

    Thanks,

    Gerroald

Viewing 1 replies (of 1 total)
  • The topic ‘Login Verification email expiration (15 minutes) is too short’ is closed to new replies.