Wordfence not blocking IP’s after multiple attempts | WordPress.org

meshavc
(@meshavc)

1 week, 3 days ago

I am having an issue where an IP will try hundreds of different User names that dont exist on wp-login without receiving a timeout or ban. I do not want to enable the ban when using non existent user setting since sometimes a user might mistype their username but I do have the settings enabled like “Lock out after how many login failures ” but is there a way to stop / ban them after multiple attempts with multiple different usernames?

Viewing 1 replies (of 1 total)

Plugin Support wfpeter
(@wfpeter)

1 week, 2 days ago

Hi @meshavc, thanks for reaching out.

It sounds like the length of time this IP is locked out could be insufficient for the level of retry attempts it’s making. In addition to the Brute Force lockout to compliment the setting you’ve mentioned, Rate Limiting may also be effective at throttling an IP like this for longer. The settings are explained in more detail via those links.

“Amount of time a user is locked out” and “How long is an IP address blocked when it breaks a rule” can be set to hours, days, and even months to try keeping it out for longer. I agree that having a sensible number of login attempts (3-5) and not immediately blocking invalid usernames is the best strategy for your legitimate users. After this though, setting longer timescales should prevent a single IP from retrying so frequently.

Many thanks,
Peter.

Viewing 1 replies (of 1 total)

You must be logged in to reply to this topic.

Tags

login

1 reply
2 participants
Last reply from: wfpeter
Last activity: 1 week, 2 days ago
Status: not resolved