Bots brute force attack even though I have put .htaccess | WordPress.org

inthujan
(@inthujan)

7 years, 8 months ago

Hey, I have a website with iThemes installed and I have most of the security options enabled. Everyday I get like 20 emails telling me that some host has tried logging in with the username Admin and has been locked out. There is no user with the id admin. I have been tracking the IPs and it seems to me that they are some kind of bots because all the ips are from different kind of countries and this website is a Swedish only website. Sometimes it even tries to login with my admin username and I have no clue how they got hold of my username.

I even have the whole wp-admin folder locked through .htaccess and I have made that only my ip can go in wp-login.php but those bots still try to brute force. I’m scared that they might succeed one day. Is there anything I could do to make this stop?

Thank you in advance!

https://wordpress.org/plugins/better-wp-security/

The topic ‘Bots brute force attack even though I have put .htaccess’ is closed to new replies.

In: Plugins
0 replies
1 participant
Last reply from: inthujan
Last activity: 7 years, 8 months ago
Status: not resolved