I haven't been to this site in ages, and today I recieve two emails in a row, because someone couldn't guess my password (they clicked the forgotten password button, twice).

I would like the admins to (if possible) look at the ip address of the person who tried to login as me, and ip ban them.

I just noticed this two.  Two emails telling me about a forgotten email.  I haven't been here since the 23rd.  Admin's better be looking into this.  :(

Those emails can be ignored if not needed - no need to worry, no-one can use password recovery screen to get someones passwords. I restarted the mail server, that should have reseted the email queue and fixed the weird problem.

There must be some kind of glitch, since retrieving password is no security problem for our forum software (CommunityServer): when a link to change password is requested, there's no way someone can catch the email sent to the users account. Brute force attacks will most like be hammering the login-screen, not password request -form.

However, I did notice that new user registration is currenly "automatic" which is now changed to Email - so that will prevent spammers from creating multiple accounts without emails.

Someone's trying to steal my nick: "sadist"   I requested none, but recieved several password reset e-mails, the last of which had no link... and now my login is locked.  Any moderators that can unlock my account?  I can verify with the original e-mail I used to create it, unlike the moron who's trying to steal my nick.

Any help would be appreciated, and thanks in advance.