- Forums
- Support and Presales
- Professional Members Support
- Users blocked - To Many Failed Login Attempts - on first attempt
Users blocked - To Many Failed Login Attempts - on first attempt
- lornevs
- OFFLINE
-
Junior Member
- Posts: 20
- Thanks: 4
- Karma: 1
5 years 1 month ago #311197
by lornevs
Users blocked - To Many Failed Login Attempts - on first attempt was created by lornevs
Several of my regular users have reported they are blocked from logging in with the error Too Many Failed Attempts even though they have only tried to log in once. I thought they were being foolish but tried myself and found that, even though I log in to the front end successfully on a regular basis, I too was blocked on my first attempt using my saved password.
I checked CBantispam, it was set up normally to block after 5 failed attempts within one month. I changed the settings to 8 attempts within one day but more users reported the same results. I turned auto-block off and can now log in normally.
I am using the latest version of CBantispam and Joomla 3.9.4. My site is vibrations.ca, I gave Kyle a log in a few weeks ago for another issue but can re-send it if necessary.
Any ideas you may have will be appreciated.
I checked CBantispam, it was set up normally to block after 5 failed attempts within one month. I changed the settings to 8 attempts within one day but more users reported the same results. I turned auto-block off and can now log in normally.
I am using the latest version of CBantispam and Joomla 3.9.4. My site is vibrations.ca, I gave Kyle a log in a few weeks ago for another issue but can re-send it if necessary.
Any ideas you may have will be appreciated.
Please Log in to join the conversation.
krileon
Team Member- OFFLINE
- Posts: 68482
- Thanks: 9076
- Karma: 1434
5 years 1 month ago - 5 years 1 month ago #311200
by krileon
Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.
Replied by krileon on topic Users blocked - To Many Failed Login Attempts - on first attempt
Review the attempts log within CB AntiSpam > Attempts. The attempts will clear for their ip address on a successful login. Have retested this usage and confirmed it works perfectly fine. For example type your username, but input an incorrect password. You should see an attempt entry logged. Next login successfully and that attempt entry should be gone.
Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.
Last edit: 5 years 1 month ago by krileon.
Please Log in to join the conversation.
- lornevs
- OFFLINE
-
Junior Member
- Posts: 20
- Thanks: 4
- Karma: 1
5 years 1 month ago - 5 years 1 month ago #311211
by lornevs
Replied by lornevs on topic Users blocked - To Many Failed Login Attempts - on first attempt
Thank you Kyle - I tried that and it worked as you said it would but I saw something that looks weird to me, maybe you can explain it.
Under my one failed attempt there was another using the same IP (the dedicated IP my hosting service uses for my site), it showed 67 failed attempts to register just four hours earlier and, at the same time, 8 attempts caught by the captcha. I didn't do any of that, I only tried to log on once.
I also noticed there were no more than one or two failed attempts from any IP address (except for one, which was not a login) so why are so many users having trouble logging in?
Under my one failed attempt there was another using the same IP (the dedicated IP my hosting service uses for my site), it showed 67 failed attempts to register just four hours earlier and, at the same time, 8 attempts caught by the captcha. I didn't do any of that, I only tried to log on once.
I also noticed there were no more than one or two failed attempts from any IP address (except for one, which was not a login) so why are so many users having trouble logging in?
Last edit: 5 years 1 month ago by lornevs. Reason: typo fixed
Please Log in to join the conversation.
- krileon
- Team Member
- OFFLINE
- Posts: 68482
- Thanks: 9076
- Karma: 1434
5 years 1 month ago #311224
by krileon
Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.
Replied by krileon on topic Users blocked - To Many Failed Login Attempts - on first attempt
Only reason for that is if the $_SERVER values were changed. Specifically REMOTE_ADDR or HTTP_X_FORWARDED_FOR. Seams like maybe your host or something installed could be altering the global $_SERVER values, which would cause something like what you're seeing.it showed 67 failed attempts to register just four hours earlier and, at the same time, 8 attempts caught by the captcha. I didn't do any of that, I only tried to log on once.
I've no idea. It's entirely IP Address based and whatever ip address they're using to login has failed to do so several times. Try emptying the attempts log and see if you've any further issues.I also noticed there were no more than one or two failed attempts from any IP address (except for one, which was not a login) so why are so many users having trouble logging in?
Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.
Please Log in to join the conversation.
- lornevs
- OFFLINE
-
Junior Member
- Posts: 20
- Thanks: 4
- Karma: 1
5 years 1 month ago #311235
by lornevs
Replied by lornevs on topic Users blocked - To Many Failed Login Attempts - on first attempt
Thanks again Kyle - I have cleared the list and I did notice today that one user who was having trouble was able to log on yesterday. I must admit that your answer to my first question is beyond my limited knowledge (i.e. I didn't understand a word) but it looks like something I can't do anything about.
FYI I also checked the Blocked list and saw that the latest one was over 9 months ago, but I've had at least 6 emails from users who were blocked in the last month or so.
Could the fact that I'm still using PHP 5.6.40 be causing problems? I've tried switching to 7.1 but it crashes one of my older sites, presumably because there is something in there that conflicts and I haven't had a chance to find it yet.
FYI I also checked the Blocked list and saw that the latest one was over 9 months ago, but I've had at least 6 emails from users who were blocked in the last month or so.
Could the fact that I'm still using PHP 5.6.40 be causing problems? I've tried switching to 7.1 but it crashes one of my older sites, presumably because there is something in there that conflicts and I haven't had a chance to find it yet.
Please Log in to join the conversation.
- krileon
- Team Member
- OFFLINE
- Posts: 68482
- Thanks: 9076
- Karma: 1434
5 years 1 month ago #311239
by krileon
Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.
Replied by krileon on topic Users blocked - To Many Failed Login Attempts - on first attempt
Your PHP version shouldn't particularly matter. I'd just keep an eye on it and if it happens again check the logs to see how many attempts they have. It's possible they're using a proxy and that proxy host is being used by a couple people, but that shouldn't be an issue if they complete a successful login as it will clear the attempts.
Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.
Please Log in to join the conversation.
Moderators: beat, nant, krileon
- Forums
- Support and Presales
- Professional Members Support
- Users blocked - To Many Failed Login Attempts - on first attempt
Time to create page: 0.668 seconds
-
You are here:
- Home
- Forums
- Support and Presales
- Professional Members Support
- Users blocked - To Many Failed Login Attempts - on first attempt