This is a spacer post for a website comment topic. The content this topic relates to: #1636 - Get always blocked by Hacking-Security

A brute-force login hack is defined as over 30 invalid logins within the last 15 minutes from your IP address.

If you have reset the clock on your server back, that could cause an issue. I'll address that possibility in the next patch release. A workaround is to empty the contents of the failedlogins table, which will delete the failure history used to produce the error.

However I think most likely what is happening is your internal network putting all users with the same IP address, and hence counting them all as one in terms of security. A proxy server might cause that. That's not good for security generally, as you can't identify particular users except if they're logged in. I'm just guessing though, I don't know if this really is the case.

In v10 we are going to make the settings (30 and 15, as above) configurable. In the mean-time you could remove this line from sources/users_active_actions.php:
if ($count>30) log_hack_attack_and_exit('BRUTEFORCE_LOGIN_HACK');
or make 30 a much bigger number.