Username hacking

Viewing 3 replies - 1 through 3 (of 3 total)
  • JenR

    (@jennifer-roberts)

    11 years, 4 months ago

    Have you seen these articles:

    http://codex.wordpress.org/FAQ_My_site_was_hacked

    http://codex.wordpress.org/Hardening_WordPress

    Peter Lawrenson

    (@lorro)

    11 years, 4 months ago

    As JenR, plus I like this plugin:
    https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/

    With this plugin you can rename your login url from the default /wp-admin. If an attacker can’t find the login page it puts him at a disadvantage!

    You can also inspect the failed logins table to get the IP address of an attacker, and then block that IP in the blacklist manager.

    There are similar security plugins available.

    Thread Starter joaomos

    (@joaomos)

    11 years, 3 months ago

    Hello and thanks for your interest.
    @jenr
    For the moment my situation is not so serious like that. There are login attempts but no one with success till now. Thus the password mustn’t yet be compromised. I suspected of some persons that had my laptop to fix and I talked with third parties who were responsible for their work. And for the last days I didn’t have any attempts. In the meanwhile I limited a lot more the number of attempts allowed and the waiting time after that. I think I’m going to install the iThemes security plugin.
    @lorro
    The IPs are always different and come from Chinese and Romanian ISPs. With iThemes I can block with a CIDR address, but I risk to block some future interesting bloger.
    I thank you again and include a lionk to my site so that you can see if something special is happening – http://www.sabercomlogica.com

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Username hacking’ is closed to new replies.