@mdrockwell Well, I don’t know why it’s happening, but I was able to fix it by adding this:
add_filter( 'comments_open', '__return_true' );
@mdrockwell I was going to say the only reason I can think of is that the config file was overriding the settings.
@gpittman I have an interesting setup for login — I use the Two Factor plugin and an application password for the app. My guess is that it has something to do with that, but who knows ¯_(ツ)_/¯ I'm just glad I have it working now. :)
@mdrockwell I do, too, and it has saved me so much heartache. I use Wordfence on all of my WordPress sites, including 2FA. I daily get half a dozen emails from one of the sites saying that Wordfence has blocked an IP because of too many failed login attempts.