WordPress.org

Ready to get started?Download WordPress

Forums

Login Security Solution
[resolved] Feature request - suppress notification when user doesn't exi (2 posts)

  1. bbeoj
    Member
    Posted 1 year ago #

    Thanks for this plugin!

    All my wordpress installs have no admin user. Almost all of the brute force attacks going on are just going after "admin"

    I don't care to see that 250 attempts have been made to log in with admin, when admin doesn't even exist. I need to filter the noise out from the signal...

    Also, can you make it take extra long when attacks go after a user that doesn't exist?

    http://wordpress.org/extend/plugins/login-security-solution/

  2. Daniel Convissor
    Member
    Plugin Author

    Posted 1 year ago #

    Hi bbeoj:

    You're very wise to not have a user named "admin." LSS is very noisy and I have taken steps to reduce that and have plans to reduce it further. Special handling for non-existent users seems like more trouble than it's worth; an attack is an attack and after exhausting "admin" may turn to actual user names.

    Thanks,

    --Dan

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic