Add/call action hook when blocking request.

  • Resolved bonnerl

    (@bonnerl)


    10 years ago

    I’d like an action hook that is run just before the user is displayed the lockout message. I would like this so that I can log the attempt for Fail2Ban.

    I want to be able to have WordFence lock out an IP after 4 failed attempts and then have Fail2Ban block the IP after 8 attempts. I’ve had a couple of instances where a bot spams the login page even after it’s been locked out and it causes the server to slow down a little
    bit. I’d like to avoid this by firewalling the bot all together.

    My desired result is this.

    1. Failed login attempt #1 – logged by WP Fail2Ban plugin.
    2. Failed login attempt #2 – logged by WP Fail2Ban plugin.
    3. Failed login attempt #3 – logged by WP Fail2Ban plugin.
    4. Failed login attempt #4 – logged by WP Fail2Ban plugin.IP locked out by WordFence
    5. Failed login attempt #5 – logged by my script via a new WordFence action hook.
    6. Failed login attempt #6 – logged by my script via a new WordFence action hook.
    7. Failed login attempt #7 – logged by my script via a new WordFence action hook.
    8. Failed login attempt #8 – logged by my script via a new WordFence action hook. – IP locked out by Fail2Ban

    This would allow real users that are locked out by WordFence to know what’s going on but fully block bots…

    https://wordpress.org/plugins/wordfence/

Viewing 1 replies (of 1 total)
  • Plugin Author WFMattR

    (@wfmattr)

    10 years ago

    Hi,

    Thanks for the suggestion. I’ve added your input to a similar request (reference number FB1113). I can’t promise that every suggestion we get will make it into a release, or when that might be, but every suggestion we get is evaluated carefully and considered seriously. A member of our dev team may or may not reach out to you here to ask for more detail.

    -Matt R

Viewing 1 replies (of 1 total)

The topic ‘Add/call action hook when blocking request.’ is closed to new replies.