Completely block default admin user login attempts in WordPress.
| Author: | Ben Yates (profile at wordpress.org) |
| WordPress version required: | 3.0 |
| WordPress version tested: | 3.9.40 |
| Plugin version: | 1.3.1 |
| Added to WordPress repository: | 17-05-2014 |
| Last updated: | 21-05-2014
Warning! This plugin has not been updated in over 2 years. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress.
|
| Rating, %: | 100 |
| Rated by: | 1 |
| Plugin URI: | |
| Total downloads: | 1 299 |
| Active installs: | 20+ |
 Click to start download |
|
The greatest hack focus on a WordPress site seems to be trying to log in with
the default username “admin”. This plugin detects all login attempts with that
username and exits with a 403 Forbidden header. This should eventually
discourage login bots from continuing to pound your site.
All attempts are logged inside the /wp-content/plugin-data folder, just in case
you need the info. Logs are kept for up to 30 days.
Screenshots
