WordPress.org

Plugin Directory

Test out the new Plugin Directory and let us know what you think.

Stop User Enumeration

User Enumeration is a method hackers and scanners use to get your username. This plugin stops it.

Even if you are careful and set your blogging nickname differently from your login id, if you are using permalinks it only takes a few seconds to discover your real user name.

This plugin stops user enumeration dead (like in use by WPSCAN), and additionally it will log an event in your system log so you can use (optionally) fail2ban to block the probing IP directly at your firewall, a very powerful solution for VPS owners to stop brute force attacks as well as DDoS attacks.

Since WordPress 4.5 user data can also be obtained by API calls without logging in, this is a WordPress feature, but if you don't need it, this plugin will restrict that too.

Requires: 3.4 or higher
Compatible up to: 4.7.1
Last Updated: 1 week ago
Active Installs: 10,000+

Ratings

5 out of 5 stars

Support

3 of 3 support threads in the last two months have been marked resolved.

Got something to say? Need help?

Compatibility

+
=
Not enough data

0 people say it works.
0 people say it's broken.

100,1,1 100,1,1
0,1,0
100,1,1
100,1,1 100,1,1
100,1,1
100,1,1
0,1,0