One of the features that iThemes security provides is the ability to automatically lock out users who try to login too many times, or users who are coming from known malicious websites or IP addresses. IThemes will often notify you that it's "doing its job" by sending out notifications such as the following:
============================
Dear Site Admin,
A user, someUser, has been locked out of the WordPress site at http://www.someWebsiteSample.net due to too many bad login attempts.
The user has been locked out until 2016-05-08 20:39:55.
To release the lockout please visit the lockouts page.
*This email was generated automatically by iThemes Security. To change your email preferences please visit the plugin settings.
============================
Rest assured, these notifications are safe to ignore.
However if you would like to disable lockout notifications, you can do so from within WordPress.
1. Login to your WordPress dashboard and click on "Security"
2. Click on the "Settings" tab.
3. Scroll down to "Email Lockout Notifications" and uncheck the checkbox.
