Own IP Locked Out

  • Works to detect and temporarily block failed login attempts!

    But I have regularly got this email:

    16 failed login attempts (4 lockout(s)) from IP: 198.178.116.238
    Last user attempted: Admin
    IP was blocked for 24 hours

    Great, except 198.178.116.238 is the IP address for my website pfsystems.com

    So I can’t login to clear the lock or log until the lockout 24 hours has passed. And then there has been multiple times when another lockout occurs.

    The user attempted is usually admin or similar, which there is no such user. These are obviously attempts to hack in and the attacker can spoof the site’s own email address.

    What should I do?

    Phil

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author WPChef

    (@wpchefgadget)

    Hi Phil,

    Please provide the information from the Debug tab of the plugin.

    Thread Starter pstenson

    (@pstenson)

    REMOTE_ADDR = IP0
    HTTP_X_REAL_IP = IP1

    I have temporarily solved the biggest issue by blacklisting the user name that they were trying the most (admin). But the moment they try with my actual user name, I’m sure that it’ll happen again.

    Phil

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Own IP Locked Out’ is closed to new replies.