I do not know quite what made me do it, but I went to the admin logon screen of one of my blogs that has login lockdown installed and purposely entered the wrong password.

After 10 attempts (with login lockdown set to block at 3), I tried the right password and it logged on. Not quite right!

So I started investigating what could be wrong with this great little plugin. In the end I was trawling through the code behind the plugin and I was looking through the installation function and there there is a routine to add a new table to the database. Yet, that table does not exist!

Quite a simple job then to manually create the table. But it is worth while testing the lockdown is working on your blog. But just do not test it just before you need to logon! Try it out at a time when you can leave it for a while, or reduce the logout time before you test it. Or just clear out your login_fails table to reset it.

Here’s the SQL you need to run to insert the table to your database. Just replace [prefix] with whatever prefix you have given in your config file when you installed WordPress. Once this table is added, it works. However, I am still testing to see if it works quite as well as it is supposed to…

CREATE TABLE [prefix]login_fails (
`login_attempt_ID` bigint(20) NOT NULL AUTO_INCREMENT,
`user_id` bigint(20) NOT NULL,
`login_attempt_date` datetime NOT NULL default ’0000-00-00 00:00:00′,
`login_attempt_IP` varchar(100) NOT NULL default ”,
PRIMARY KEY (`login_attempt_ID`) );

Digg This
Reddit This
Stumble Now!
Buzz This
Vote on DZone
Share on Facebook
Bookmark this on Delicious
Kick It on DotNetKicks.com
Shout it
Share on LinkedIn
Bookmark this on Technorati
Post on Twitter
Google Buzz (aka. Google Reader)

If you want to keep up with our latest posts, just follow us on our RSS feed, join our weekly newsletter or follow us over at Twitter. Please do join in - it is totally free and only the best posts are passed to you!

Also, leave a comment below. We are a 'DoFollow' blog, so it is well worth your time. Thanks for calling in.

Similar Articles You Might Like To Read:
    Locking Lockdown – does it actually work? It was, until recently, one of the plugins that I listed on by top 5 plugins. However, after some playing...
    Limit Login Attempts – better than Login Lockdown! After a little bit of research, I have removed Login Lockdown and instead installed Limit Login Attempts. After trying them...
    Locking Down Your WordPress Admin Login If someone is going to attempt to attack your blog through brute force, a good password and an unusual admin...
    Limit Login Attempts And Lock Out Hackers One way hackers will try to hack into a target website is by running a program that tries thousands of...
    My Five Must-Have WordPress Plugins We all have different plugins that we cannot live without and I certainly have a collection of 5 very important...
    Too Much Security Is A Pain! I wrote last week that I was trialling a security plug Login Lockdown on many of my blogs. I have...
    Protecting Your Admin I have talked already about important steps such as using a secure password and changing your admin user id, but...
    Backing Up WordPress This blog is a few months old and I am guilty of a great crime against blogging – I have...
    Avoid Known Security Holes By Upgrading WordPress One of the reasons that new versions of WordPress are released is that security holes have been discovered and patched...
    Tidying Up Your Database If you are like me then it is unlikely that most posts go live the way that you type them...