Title: Failed Login Firewall reporting Author: Anton Aleksandrov Published: February 1, 2016 Last modified: March 3, 2022 --- Search plugins This plugin **hasn’t been tested with the latest 3 major releases of WordPress**. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress. ![](https://s.w.org/plugins/geopattern-icon/failed-login-firewall.svg) # Failed Login Firewall reporting By [Anton Aleksandrov](https://profiles.wordpress.org/antonaleksandrov/) [Download](https://downloads.wordpress.org/plugin/failed-login-firewall.zip) * [Details](https://wordpress.org/plugins/failed-login-firewall/#description) * [Reviews](https://wordpress.org/plugins/failed-login-firewall/#reviews) * [Installation](https://wordpress.org/plugins/failed-login-firewall/#installation) * [Development](https://wordpress.org/plugins/failed-login-firewall/#developers) [Support](https://wordpress.org/support/plugin/failed-login-firewall/) ## Description Idea of this plugin is simple. On failed login attempt – report IP of visitor to centralized database. If same IP fails a lot (no matter on which site) – it will be listed on blocklist. CSF (Config Server Firewall) allows you to put URL which contains list of IPs, that should be blocked. Set it to our address and your server will be protected from those, who abuse WordPress sites login forms. Plugin is simple and I believe it can become an effecient tool fighting against hackers, as it would stop bad guys at firewall level, not letting them do any harm. ## Installation 1. Upload the plugin files to the `/wp-content/plugins/plugin-name` directory, or install the plugin through the WordPress plugins screen directly. 2. Activate the plugin through the ‘Plugins’ screen in WordPress ## FAQ ### What will be reported Failed login and IP address of visitor. ### How can I use your list on my firewall Set firewall script, e.g. CSF to fetch list of abuser IPs from here http://wp-firewall. hosting.guru/deny.txt ### What is deny policy IP will be listed in deny list if it matches any of the following * more than 20 failed login attempts since yesterday 00:00 * more than 100 failed login attempts within last 10 days * more than 500 failed login attempts within last 30 days Basically if some IP failed 500 times or more – it will be blocked for at least 30 days. ## Reviews ![](https://secure.gravatar.com/avatar/988e81a4c9f0a1bf5bbe12bfbe5e006cd079ffca745546a4a323a9a6c2e9f002? s=60&d=retro&r=g) ### 󠀁[Veldig smart brannmur](https://wordpress.org/support/topic/veldig-smart-brannmur/)󠁿 [Zondo Norge AS](https://profiles.wordpress.org/zondono/) September 3, 2016 Blir smartere desto flere som har den 🙂 ![](https://secure.gravatar.com/avatar/6e13ca75b665ca61bd579d5beaf2b9d7e0e5da56780e14d4aace96256ae08f78? s=60&d=retro&r=g) ### 󠀁[Alle bør ha denne installert!](https://wordpress.org/support/topic/alle-b%c3%b8r-ha-denne-installert/)󠁿 [Gudjon Gudjonsson](https://profiles.wordpress.org/gudjon/) September 3, 2016 Jo flere wordpress som har denne installert, jo bedre! Blir en wordpress angrepet og hacker blokkert – så blir den jo blokkert for alle andre som bruker denne plugin! Fantastisk! [ Read all 2 reviews ](https://wordpress.org/support/plugin/failed-login-firewall/reviews/) ## Contributors & Developers “Failed Login Firewall reporting” is open source software. The following people have contributed to this plugin. Contributors * [ Anton Aleksandrov ](https://profiles.wordpress.org/antonaleksandrov/) [Translate “Failed Login Firewall reporting” into your language.](https://translate.wordpress.org/projects/wp-plugins/failed-login-firewall) ### Interested in development? [Browse the code](https://plugins.trac.wordpress.org/browser/failed-login-firewall/), check out the [SVN repository](https://plugins.svn.wordpress.org/failed-login-firewall/), or subscribe to the [development log](https://plugins.trac.wordpress.org/log/failed-login-firewall/) by [RSS](https://plugins.trac.wordpress.org/log/failed-login-firewall/?limit=100&mode=stop_on_copy&format=rss). ## Changelog #### 0.32 * Minor syntax fix #### 0.3 * Compatability update #### 0.2 * Ready to publish on wordpress.com #### 0.1 * First version for testing on private sites. ## Meta * Version **0.32** * Last updated **4 years ago** * Active installations **50+** * WordPress version ** 3.0.1 or higher ** * Tested up to **5.9.13** * Tags * [firewall](https://wordpress.org/plugins/tags/firewall/)[login](https://wordpress.org/plugins/tags/login/) [security](https://wordpress.org/plugins/tags/security/) * [Advanced View](https://wordpress.org/plugins/failed-login-firewall/advanced/) ## Ratings 5 out of 5 stars. * [ 2 5-star reviews ](https://wordpress.org/support/plugin/failed-login-firewall/reviews/?filter=5) * [ 0 4-star reviews ](https://wordpress.org/support/plugin/failed-login-firewall/reviews/?filter=4) * [ 0 3-star reviews ](https://wordpress.org/support/plugin/failed-login-firewall/reviews/?filter=3) * [ 0 2-star reviews ](https://wordpress.org/support/plugin/failed-login-firewall/reviews/?filter=2) * [ 0 1-star reviews ](https://wordpress.org/support/plugin/failed-login-firewall/reviews/?filter=1) [Your review](https://wordpress.org/support/plugin/failed-login-firewall/reviews/#new-post) [See all reviews](https://wordpress.org/support/plugin/failed-login-firewall/reviews/) ## Contributors * [ Anton Aleksandrov ](https://profiles.wordpress.org/antonaleksandrov/) ## Support Got something to say? Need help? [View support forum](https://wordpress.org/support/plugin/failed-login-firewall/) ## Donate Would you like to support the advancement of this plugin? [ Donate to this plugin ](http://wp-firewall.hosting.guru/)