Community Documentation

Sorry, there have been more than 5 failed login attempts for this account. It is temporarily blocked.

Last updated April 22, 2011. Created by Heine on January 11, 2011.
Edited by mradcliffe. Log in to edit this page.

Drupal 7 prevents brute force attacks on accounts. It does so by refusing login attempts when more than 5 attempts failed. The amount of failed logins is recorded in the table 'flood'. You can either wait before trying to login again or clean the flood table with the procedure below.

If you forgot your password, generate a new password and update the database.

Execute the following query on the Drupal database:

DELETE FROM `flood`;

To execute this query it will be necessary to login to the database. This is typically done through the command line or through a GUI interface such as phpMyAdmin.

From the command line, with drush installed:

drush php-eval 'db_query("DELETE FROM `flood`");'

Related questions

  • How do I remove flood events from particular identifiers?
  • How do I configure the new Drupal 7 flood control settings?
Login or register to post comments

Looking for support? Visit the Drupal.org forums, or join #drupal-support in IRC.

Comments

Shorter

Posted by Cyberwolf on September 22, 2011 at 8:53am

You can also use the sqlq command:

drush sqlq "DELETE FROM flood"

How long do users need to

Posted by lukus on February 15, 2012 at 3:47pm

How long do users need to wait?

http://nurtureux.com

About this page

Drupal version
Drupal 7.x
Audience
Site administrators

Reference

Drupal’s online documentation is © 2000-2012 by the individual contributors and can be used in accordance with the Creative Commons License, Attribution-ShareAlike 2.0. PHP code is distributed under the GNU General Public License.
nobody click here