Too Many Site Lockouts

Viewing 2 replies - 1 through 2 (of 2 total)

  • iThemes does not consider this forum as a primary support channel.
    As stated in the readme.txt file:

    Free support may be available with the help of the community in the www.remarpro.com support forums (Note: this is community-provided support. iThemes does not monitor the www.remarpro.com support forums).

    You can get (paid) support from iThemes (for iTSec Pro customers) here.

    dwinden

    The number of lockouts (brute force attack attempts) depends on various factors.

    Assuming you are experiencing host lockouts and you are using default iTSec plugin brute force protection settings I think you are seeing the expected number of lockouts.

    5 (default) bad login attempts within 5 (default) minutes counts towards a lockout.

    By default the iTSec plugin (temp) host lockouts expire after 15 minutes. So 4, sometimes 5 (host) lockouts in an hour can be expected.

    Again depending on iTSec plugin settings the attackers ip address can also be banned permanently after (default) 3 lockouts within 7 (default) days.

    If the above info answers your question please mark this topic as ‘resolved’.

    dwinden

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Too Many Site Lockouts’ is closed to new replies.