Brute Force techniques

Hello. Thanks for replying!

Apologies I should of made it clear that the plugin works great and I love it!

I’m on a Dedicated server that I manage and while it’s not a massive problem, the resources taken by those attempting to login would be best removed.

I like to have my server running as well as possible so would like to eradicate those trying to continually login.

Working out what the best options would be with the plugin and my issues as documented above.

I’ve tried it before but this wasn’t as effective at cutting out logins as the incorrect login usernames.

I recall some bulk login hackers would keep hitting the 404 page rather than be instantly banned.

I’ll give it a try for this account and try monitor the activity. It may be that the hackers hitting the 404 page is more effective and less a resource drain than being able to repeatedly attempt logins.

Thanks again mbrsolution!

All apart from the latter few…

– Hotlinks
– 404 Detection

My experience of using the 404 detection was that it’d generate massive logs and I couldn’t keep on top of trying to lockout all the many IP’s per day if makes sense.

No other security plugins.

The problem with the IP address is my client is on a connection where the IP changes very often.

I’ll recommend changing the WPADMIN URL with my client and see how this effects things.

PS. It’d be great if the plugin had a PayPal donate page as I’d like to say thanks for creating such a great plugin.