WordPress.org

Ready to get started?Download WordPress

Forums

iThemes Security (formerly Better WP Security)
[Plugin: Better WP Security] Banning a Username (8 posts)

  1. alderino
    Member
    Posted 1 year ago #

    Is it possible to ban a specific username? Someone is clearly trying to hack my ecommerce website. But being very careful to do one login attempt every 5 minutes thus avoiding being locked out. So I can't even narrow down the IP address to ban it.

    Thanks in advance for any advice.

    http://wordpress.org/extend/plugins/better-wp-security/

  2. gabberkopf
    Member
    Posted 1 year ago #

    This feature would be great. The plugin blocks successful bad login attemps but i got thousands of login tries with always the same two usernames. It would be great to block these permanently.

  3. It's not something I've ever tried to be honest. I'll take a look for future versions.

  4. gokul84
    Member
    Posted 1 year ago #

    i've got the sam problem, somebody is trying to login as 'admin'
    he has never succeeded , as there is no user named admin, but , can i ban user 'admin'?

  5. Guillaume Assire
    Member
    Posted 1 year ago #

    I have no problem with somebody trying to log in with a non-existing login :) It's only when he figures out it doesn't exist that it'll become more critical.

    In other words, would it be possible to have the IP address associated to 'Bad Login Attempts' in the log page, so that we can then blacklist this IP?

  6. Kevin
    Member
    Posted 1 year ago #

    I agree! I want to see the associated IP address of the attempt. This allows me to expand my ban list.

  7. kcrusher
    Member
    Posted 1 year ago #

    Couldn't agree more - if I'm seeing the username 'admin' being used repeatedly and can tie it to an IP address it would be easy to ban that IP address, since it's obvious they're trying to gain access for malicious purposes.

  8. stufreeze
    Member
    Posted 1 year ago #

    Yeah I'd love to see this added as we've had 5006 attempts to log into the Admin account (which doesn't exist) since November and we want to see what IP it's coming from.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags

No tags yet.