Support » Fixing WordPress » Brute force login attempts

Viewing 5 replies - 1 through 5 (of 5 total)
  • I do not know the details of the plugin you are using, but I use WordFence Security to throttle as well as to block after a certain number of failures without ever being set out on the porch.

    The plugin disables access to the account for X minutes after X login attempts. After X times it blacklists the IP of the attacker – though they tend to use servers around the world, blockin IP does not stop the attacks.

    The plugin works fine and does what it’s supposed to do.

    I’m just surprised (and worried) they can try to login even when I completely broke/disabled wp-logn.php through FTP. I need to put an additional line of defence here 🙂

    Maybe I had misunderstood this:

    I can’t do any work sinc I’m being logged out automatically.

    Obscurity and security are not synonymous, and I use BulletProof Security to write all my .htaccess including protection to keep malicious attempts completely away from wp-admin.

    The problem is not related to the plugin directly – it does what it’s supposed to do.

    The core of it is that even when I remove/rename /wp-login.php from the wp directory, the bots still can somehow try to log-in (the plugin sends emails that the user has been locked due too many login attempts). There is no front-end login form anywhere on the site.

    So the account “admin” gets locked.
    Account aaaaa with admin rights gets locked.
    Account bbb with admin rights gets locked.

    Since those attacks usually take around 2-3 days this is a nuisance.

    I could always disable this feature in the plugin but I want that extra security. So here I am looking for an answer how are they accessing the login form even if it’s physically disabled/protected by additional password access.

    I hope I do not sound argumentative, and I readily admit to not knowing exactly how to resolve your dilemma.

    Here would be a great place to ask:

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Brute force login attempts’ is closed to new replies.