User Enumeration is a method hackers and scanners use to get your username. This plugin stops it.
No, but fail2ban will allow you to block IP addresses that attempt user enumeration. = What do I do with the fail2ban file?= Place the file wordpress-userenum.conf in your fail2ban installation's filter.d directory. edit your jail.local to include lines like
[wordpress-userenum] enabled = true filter = wordpress-userenumaction = iptables-allports[name=WORDPRESS-USERENUM] sendmail-whois-lines[name=WORDPRESS-USERENUM, dest=youremail@yourdomain, logpath=/var/log/messages] logpath = /var/log/messages maxretry = 1 findtime = 600 bantime = 2500000
Adjusted to your own requirements.