Cookie based brute force protection | WordPress.org

Resolved crosstherubicon
(@crosstherubicon)

8 years, 2 months ago

I implemented cookie based brute force protection on several of my sites because I was getting attacked frequently. This changed the login URL of course. The secret word I used is 20 characters and very strong. Within minutes of implementing this strategy I began getting site lockout notification emails for each site. How could that be? If the URL was secure and very strange how could I get site lockout notifications within minutes? It appears that the URL is getting exposed somehow.

https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/

Viewing 2 replies - 1 through 2 (of 2 total)

Plugin Contributor mbrsolution
(@mbrsolution)

8 years, 2 months ago

Hi, do you have the following Enable Pingback Protection: enabled? This can be found under Firewall -> Basic Firewall Rules.

Thread Starter crosstherubicon
(@crosstherubicon)

8 years, 2 months ago

That seems to have worked. Thanks a lot.

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Cookie based brute force protection’ is closed to new replies.

Tags

brute force protection

In: Plugins
2 replies
2 participants
Last reply from: crosstherubicon
Last activity: 8 years, 2 months ago
Status: resolved