Completely block default admin user login attempts in WordPress.
Author: | Ben Yates (profile at wordpress.org) |
WordPress version required: | 3.0 |
WordPress version tested: | 3.9.40 |
Plugin version: | 1.3.1 |
Added to WordPress repository: | 17-05-2014 |
Last updated: | 21-05-2014
Warning! This plugin has not been updated in over 2 years. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress.
|
Rating, %: | 100 |
Rated by: | 1 |
Plugin URI: | |
Total downloads: | 1 299 |
Active installs: | 20+ |
Click to start download |
The greatest hack focus on a WordPress site seems to be trying to log in with
the default username “admin”. This plugin detects all login attempts with that
username and exits with a 403 Forbidden header. This should eventually
discourage login bots from continuing to pound your site.
All attempts are logged inside the /wp-content/plugin-data folder, just in case
you need the info. Logs are kept for up to 30 days.
Screenshots