I don’t have any answers for you but one of my blogs is currently being attacked as well.
Peace…
Plugin Author
AITpro
(@aitpro)
See these Forum Topic links below for things you can do to protect against ongoing login attacks/cracks. The basic idea is you do not want to display your Administrator user account publicly and you want to protect against bot probes looking for user account names or user id’s.
http://forum.ait-pro.com/forums/topic/revealing-the-admin-or-editor-user-name-and-not-knowing/
http://forum.ait-pro.com/forums/topic/wordpress-author-enumeration-bot-probe-protection-author-id-user-id/
Plugin Author
AITpro
(@aitpro)
Another method that I think is not posted in the first link is to do this.
Create an Administrator account that is ONLY used for logging into the site. NEVER create a Post or Page with that Administrator account so that the user account/author name will never be displayed publicly. That Administrator user account will only be used for logging into the site and nothing else.
Another method that I think is not posted in the first link is to do this.
Create an Administrator account that is used for logging into the site. NEVER create a Post with that Administrator account so that the user account/author name will never be displayed publicly. That Administrator user account will only be used for logging into the site and nothing else.
Thank you
Bygooma011
Great tips! Thanks guys. The guys/bots kept up trying for the past 24 hours but seem to have stopped now. In any case I logged in and created a new Administrator account which I will only use for Admin and never have the user/account name displayed publicly; I changed the existing accounts permissions from Admin to Author; and also changed the display name so that the blog’s displayed Author’s name is different from the account name.
Great info! Thanks.
