Customize 503 Lockout Template

  • Resolved norbertk

    (@norbertk)


    2 years, 8 months ago

    I am looking to customize the 503 Lockout screen that users see. Customizing the message under Advanced settings is not enough. I see there are two templates:

    /wordfence/vendor/wordfence/wf-waf/src/views/503-lockout.php
    /wordfence/lib/wfLockedOut.php

    If I’m using a child theme, would it just go under /wp-content/themes/hestia-child/wordfence/vendor/wordfence/wf-waf/src/views ?

Viewing 7 replies - 1 through 7 (of 7 total)
  • Plugin Support wfphil

    (@wfphil)

    2 years, 8 months ago

    Hi @norbertk

    We strongly recommend that you do not modify our plugin code and as a consequence we do not provide support for this.

    Why do you want to modify block pages please when they give site visitors everything that they need to be able to understand why they were blocked and are then able to contact you through your custom message that you can add to the block pages so that you can unblock them in a timely manner?

    Thread Starter norbertk

    (@norbertk)

    2 years, 8 months ago

    It is creating additional support cases from our users. The block pages have too much information on them and the custom message is buried in all the detail. I just need a simple page that display’s the custom message.

    Plugin Support wfphil

    (@wfphil)

    2 years, 8 months ago

    Hi @norbertk

    Thank you for the update.

    I will pass your feedback to the team.

    Regular users of the site shouldn’t be being blocked. What are they doing when they are being blocked as you may not be following our recommended settings so that you can significantly reduce the amount of people being blocked?

    Thread Starter norbertk

    (@norbertk)

    2 years, 8 months ago

    They are being locked out after failed login attempts.

    Plugin Support wfphil

    (@wfphil)

    2 years, 8 months ago

    Hi @norbertk

    Thank you for the update.

    Our recommended setting for a site with a lot of customers/subscribers/members is 20 login attempts. For some anecdotal evidence I saw an ecommerce site where a lot of customers were being locked out logging in and it was because the site owners set the brute force login attack prevention rules to allow 5 login attempts in their set timeframe before someone is locked out. This shows that people forget their correct login credentials and keep trying different usernames and/or passwords multiple times. Setting it to 20 attempts prevented the lock outs on that site and fixed their problem:

    https://www.wordfence.com/help/firewall/brute-force/

    Thread Starter norbertk

    (@norbertk)

    2 years, 8 months ago

    I will definitely increase the login attempts to 20. Thanks

    Plugin Support wfphil

    (@wfphil)

    2 years, 8 months ago

    Hi @norbertk

    Thank you for the reply and you are welcome.

Viewing 7 replies - 1 through 7 (of 7 total)

The topic ‘Customize 503 Lockout Template’ is closed to new replies.