WordPress.org

Ready to get started?Download WordPress

Forums

WP Login Alerts by DigiP
[resolved] Email from name (4 posts)

  1. ajamm
    Member
    Posted 1 year ago #

    Having just updated it was strange to see messages coming from 'ticktockcomputing'. Made me think we have been hacked :-)

    I modified this in the code fine, but it might be nice to have a config option for this.

    Nice plugin, and thankyou!

    http://wordpress.org/extend/plugins/wp-login-alerts/

  2. Sonja
    Member
    Posted 1 year ago #

    I agree with this suggestion. We do not wish to manually change
    the code for every update

  3. mikeotgaar
    Member
    Posted 1 year ago #

    Config option gets my vote too

  4. DigiP
    Member
    Plugin Author

    Posted 1 year ago #

    This plug-in was meant as a simple wake up call to people who were otherwise not even paying attention to the login attacks on their sites. No more, no less. I could go full fledged admin panel on it, but if said site gets compromised, attackers are going to just change where the email gets sent to anyway. This is more or less a passive plug-in, and most attackers aren't even looking for it on systems. I suspect that will change over time, but I have no intention of modifying it at this point in time, due to the fact that an option like this, requires storage in the wordpress database, and just leaves another avenue open for attack. If you get 30 or 3000 emails of login attempts, you're not securing your site to begin with, and this plug-in, is only to alert you, not protect the login page...

    http://krebsonsecurity.com/2013/04/brute-force-attacks-build-wordpress-botnet/

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags

No tags yet.