Limit rate of login attempts, including by way of cookies, for each IP. Fully customizable.
There's a reason why this plugin is mandatory for some hosting providers. It prevents brute force attacks very well. I think it should be moved into core!
Very happy with the free version. Does everything it says, and has a clear interface.
I kept seeing attempts at brute forcing one of my sites the other day, searched and found this plugin. It has stopped attempts on 2 sites.
And I agree with jwheck - don't use "admin" as a username.
My blog gets about a dozen attempted break-ins a month. It's humbling to know that people would want to break into my site. On the other hand, it's scary to see how many attempted break-ins I get even for my small site. I like the email notifications I can set up for myself.
Lots of security plugins, but for the most common hack, this is simply sublime.
Great, invaluable, is on my list of default plugins has stopped many attacks. It is also wise to change the default username from 'admin' as since installing this I have realised how many, pathetic, brute force attacks go on. I originally installed it after being hacked by a teenager from Algeria - I guess it keeps him off the streets.
Several sites had been hacked, so I cleaned up everything, and the main change I made was change the admin passwords. Then I installed this tool. Within 24 hours I got a notice that an IP from the Ukraine had been blocked.
This should be part of core, it's just good common sense.
at first I thought it will not work with 3.5.1 but it worked like a charm. great job
Simple and easy. Works like a charm. A must have to everyone!
You must log in to submit a review. You can also log in or register using the form near the top of this page.