XF 1.5 Login Error

X

XnForFanKN

Active member
Within the past week, several of our members have complained that when logging in they are getting a message saying that their account is locked because they exceeded the number of failed login attempts allowed. However, they are sometimes getting it the first time they login, or they are getting it after only one failed attempt. This tells me that either something is not working correctly with the login system, or else a person or bot is trying to brute force members' accounts.

First, is there anything that might cause that error to come up when it shouldn't?

Second, is there a good way to keep track of failed Xenforo logins?
 
Sort by date Sort by votes
The login attempts are tracked based on IP. This tells me that you likely have something preventing the real user IP from being seen by the server. I'd guess a reverse proxy like CloudFlare.

Failed logins aren't exposed anywhere in the UI, though they are temporarily tracked directly in the DB.
 
Upvote 0 Downvote
You must log in or register to reply here.

Similar threads

Ozzy47
[OzzModz] Failed Login Log
2
Replies
26
Views
742
duderuud
duderuud
Ozzy47
[OzzModz] ACP Failed Login Log
2
Replies
20
Views
533
Ozzy47
Ozzy47
PumpinIron
  • Question Question
XF 2.2 Is there a way to lock an account after X amount of failed login attempts?
Replies
13
Views
757
PumpinIron
PumpinIron
G
  • Question Question
XF 2.2 Any idea on how to fix this error? "failed to load resource: the server responded with a status of 503 () webmanifest.php:1"
Replies
0
Views
548
Global96
G
mikkie
  • Question Question
XF 2.1 User Registration & Login Error
Replies
5
Views
727
Paul B
P
Back
Top Bottom