WordPress.org

Ready to get started?Download WordPress

Forums

Stealth Login Page
[resolved] Not stopping the latest bot attacks (5 posts)

  1. Steve
    Member
    Posted 1 year ago #

    I've installed the plugin and it works if I try it - direct calls to wp-login get redirected and I get redirected on log out the but the login attempts made by the current bot are getting past the check. I know because I've got the Limit Login Attempts plugin and its happily sending me emails showing that things are getting through

    http://wordpress.org/extend/plugins/stealth-login-page/

  2. Steve
    Member
    Posted 1 year ago #

    I think this might be because they are going for direct POST calls..

  3. Jesse Petersen
    Member
    Plugin Author

    Posted 1 year ago #

    That is how it is happening. I had it solved at one point, but a more vital thing broke when I did, so I'm still tracking down how to block them all. I haven't had any lockouts since 2.1.2, though. 2.1.0 and 2.1.1 had some issues that I closed back up - I believe 2.0.2 is the most stable version for brute attacks, but it doesn't allow you to use the lost password link or the logout link in the admin toolbar.

  4. flick
    Member
    Posted 1 year ago #

    @Jesse: Thanks for the update. Sending you code luck to solve the issue for later versions of SLP. I only just started using it and can confirm the effectiveness of this plugin as the number of lockouts have plummeted (was over 1500 in one week).

    I have only had 4 so far these two days with 2.1.2.

    Thank you for your hard work.

  5. Jesse Petersen
    Member
    Plugin Author

    Posted 1 year ago #

    Download 3.0.0 today.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags

No tags yet.