Title: Did not help
Last modified: August 21, 2016

---

# Did not help

 *  Resolved [klartext-ne](https://wordpress.org/support/users/klartext-ne/)
 * (@klartext-ne)
 * [13 years, 1 month ago](https://wordpress.org/support/topic/does-not-help/)
 * Hello, there are still some external login. How is this possible? I did exactly
   what you wrote.
 * [http://wordpress.org/extend/plugins/stealth-login-page/](http://wordpress.org/extend/plugins/stealth-login-page/)

Viewing 9 replies - 1 through 9 (of 9 total)

 *  [Mr Tibbs](https://wordpress.org/support/users/mtibesar/)
 * (@mtibesar)
 * [13 years, 1 month ago](https://wordpress.org/support/topic/does-not-help/#post-3641007)
 * I’m confused as to how this plugin works.
 * My site is a private website which requires ALL users register and login.
 * Would this plugin prevent ALL users from logging in?
 *  [ThemeMee](https://wordpress.org/support/users/thememee/)
 * (@thememee)
 * [13 years, 1 month ago](https://wordpress.org/support/topic/does-not-help/#post-3641080)
 * Jessie,
 * Thank you for creating the Stealth Login Page plugin! It seems to work when I
   test it. (And I SO want this to work!) However after installing it, I still had
   someone get locked out by the “Limit Logins” plugin. From my (very) limited knowledge,
   that doesn’t seem possible. WP 3.5.1
 * Any thoughts or updates?
 *  [gjefle](https://wordpress.org/support/users/gjefle/)
 * (@gjefle)
 * [13 years, 1 month ago](https://wordpress.org/support/topic/does-not-help/#post-3641103)
 * Same thing here – I’ve installed Stealth Login, created a “secret” login page
   but Wordfence is still locking out invalid users, which I assume to be bad bots.
   What’s going on?
 *  Plugin Contributor [peterdog](https://wordpress.org/support/users/peterdog/)
 * (@peterdog)
 * [13 years, 1 month ago](https://wordpress.org/support/topic/does-not-help/#post-3641114)
 * Everyone please look at your server logs. Line up the IP addresses of those offenders
   and see what paths they used. If they are already IP-logged from before, it’s
   possible that the plugin is kicking them out before my plugin.
 * I’m using this on sites with both of the login attempt plugins I mentioned with
   just 1 lockout today on my most-visited site for attempting “admin.” I will check
   my logs if you check your logs.
 *  Plugin Contributor [peterdog](https://wordpress.org/support/users/peterdog/)
 * (@peterdog)
 * [13 years, 1 month ago](https://wordpress.org/support/topic/does-not-help/#post-3641121)
 * Here are two of mine and they don’t make sense yet. I am investigating it with
   my fellow developers whom I trust to dig in with me.
 * 88.230.88.135 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   11/Apr/2013:21:44:55 +0000] “POST /wp-login.php HTTP/1.1” 302 3889 “-” “Mozilla/
   5.0 (Windows; U; Windows NT 5.1; tr; rv:1.9.2.10) Gecko/20100914 Firefox/3.6.10(.
   NET CLR 3.5.30729; .NET4.0E)”
    88.230.88.135 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   11/Apr/2013:21:44:56 +0000] “POST /wp-login.php HTTP/1.1” 302 3889 “-” “Mozilla/
   5.0 (Windows; U; Windows NT 5.1; tr; rv:1.9.2.10) Gecko/20100914 Firefox/3.6.10(.
   NET CLR 3.5.30729; .NET4.0E)” 88.230.88.135 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   11/Apr/2013:22:21:01 +0000] “POST /wp-login.php HTTP/1.1” 302 3888 “-” “Mozilla/
   5.0 (Windows; U; Windows NT 5.1; tr; rv:1.9.2.10) Gecko/20100914 Firefox/3.6.10(.
   NET CLR 3.5.30729; .NET4.0E)” 88.230.88.135 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   11/Apr/2013:22:21:01 +0000] “POST /wp-login.php HTTP/1.1” 302 3938 “-” “Mozilla/
   5.0 (Windows; U; Windows NT 5.1; tr; rv:1.9.2.10) Gecko/20100914 Firefox/3.6.10(.
   NET CLR 3.5.30729; .NET4.0E)”
 * ——
 * 76.253.78.54 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   12/Apr/2013:02:51:53 +0000] “GET / HTTP/1.1” 200 5675 “[https://www.google.com/&#8221](https://www.google.com/&#8221);“
   Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/
   26.0.1410.43 Safari/537.31”
    76.253.78.54 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   12/Apr/2013:02:51:53 +0000] “GET / HTTP/1.1” 200 5675 “[http://www.petersenmediagroup.com/&#8221](http://www.petersenmediagroup.com/&#8221);“
   Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/
   26.0.1410.43 Safari/537.31” 76.253.78.54 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   12/Apr/2013:02:51:53 +0000] “GET /wp-content/themes/minimum/images/logo-image.
   png HTTP/1.1” 200 3418 “[http://www.petersenmediagroup.com/&#8221](http://www.petersenmediagroup.com/&#8221);“
   Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/
   26.0.1410.43 Safari/537.31” 76.253.78.54 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   12/Apr/2013:02:51:57 +0000] “GET /wp-admin HTTP/1.1” 301 251 “-” “Mozilla/5.0(
   Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.43
   Safari/537.31” 76.253.78.54 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   12/Apr/2013:02:51:57 +0000] “GET /wp-admin/ HTTP/1.1” 302 0 “-” “Mozilla/5.0 (
   Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.43
   Safari/537.31” 76.253.78.54 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   12/Apr/2013:02:51:57 +0000] “GET /wp-login.php?redirect_to=http%3A%2F%2Fwww.petersenmediagroup.
   com%2Fwp-admin%2F&reauth=1 HTTP/1.1” 302 3026 “-” “Mozilla/5.0 (Windows NT 6.2;
   WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.43 Safari/537.31”
   76.253.78.54 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   12/Apr/2013:02:52:01 +0000] “GET / HTTP/1.1” 200 5675 “[https://www.google.com/&#8221](https://www.google.com/&#8221);“
   Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/
   26.0.1410.43 Safari/537.31” 76.253.78.54 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   12/Apr/2013:02:52:02 +0000] “GET / HTTP/1.1” 200 5675 “[http://www.petersenmediagroup.com/&#8221](http://www.petersenmediagroup.com/&#8221);“
   Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/
   26.0.1410.43 Safari/537.31” 76.253.78.54 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   12/Apr/2013:02:52:22 +0000] “POST /wp-login.php HTTP/1.1” 302 1576 “[http://brokencatholic.com/wp-login.php?redirect_to=http%3A%2F%2Fbrokencatholic.com%2Fwp-admin%2F&reauth=1&#8221](http://brokencatholic.com/wp-login.php?redirect_to=http%3A%2F%2Fbrokencatholic.com%2Fwp-admin%2F&reauth=1&#8221);“
   Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/
   26.0.1410.43 Safari/537.31” 76.253.78.54 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   12/Apr/2013:02:52:43 +0000] “POST /wp-login.php HTTP/1.1” 302 1576 “[http://brokencatholic.com/wp-login.php?redirect_to=http%3A%2F%2Fbrokencatholic.com%2Fwp-admin%2F&reauth=1&#8221](http://brokencatholic.com/wp-login.php?redirect_to=http%3A%2F%2Fbrokencatholic.com%2Fwp-admin%2F&reauth=1&#8221);“
   Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/
   26.0.1410.43 Safari/537.31” 76.253.78.54 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   12/Apr/2013:02:53:02 +0000] “POST /wp-login.php HTTP/1.1” 302 1575 “[http://brokencatholic.com/wp-login.php?redirect_to=http%3A%2F%2Fbrokencatholic.com%2Fwp-admin%2F&reauth=1&#8221](http://brokencatholic.com/wp-login.php?redirect_to=http%3A%2F%2Fbrokencatholic.com%2Fwp-admin%2F&reauth=1&#8221);“
   Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/
   26.0.1410.43 Safari/537.31” 76.253.78.54 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   12/Apr/2013:02:54:36 +0000] “POST /wp-login.php HTTP/1.1” 302 1600 “[http://brokencatholic.com/wp-login.php?redirect_to=http%3A%2F%2Fbrokencatholic.com%2Fwp-admin%2F&reauth=1&#8221](http://brokencatholic.com/wp-login.php?redirect_to=http%3A%2F%2Fbrokencatholic.com%2Fwp-admin%2F&reauth=1&#8221);“
   Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/
   26.0.1410.43 Safari/537.31” 76.253.78.54 [http://www.petersenmediagroup.com](http://www.petersenmediagroup.com)–[
   12/Apr/2013:02:55:13 +0000] “POST /wp-login.php HTTP/1.1” 302 1578 “[http://brokencatholic.com/wp-login.php?redirect_to=http%3A%2F%2Fbrokencatholic.com%2Fwp-admin%2F&reauth=1&#8221](http://brokencatholic.com/wp-login.php?redirect_to=http%3A%2F%2Fbrokencatholic.com%2Fwp-admin%2F&reauth=1&#8221);“
   Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/
   26.0.1410.43 Safari/537.31”
 *  Plugin Contributor [peterdog](https://wordpress.org/support/users/peterdog/)
 * (@peterdog)
 * [13 years, 1 month ago](https://wordpress.org/support/topic/does-not-help/#post-3641124)
 * Brandon Kraft and I figured it out. It would appear that bots can attempt to 
   POST the login form credentials via the address bar, never actually gaining access
   to the login page.
 * This illustrates that it is still important to have a strong login and to continue
   to use login limiting plugins, so Stealth Login Page is one of a 3-prong approach.
 *  [ThemeMee](https://wordpress.org/support/users/thememee/)
 * (@thememee)
 * [13 years, 1 month ago](https://wordpress.org/support/topic/does-not-help/#post-3641125)
 * OK, makes sense. Thanks for the effort and research. Appreciate your help in 
   making the WordPress community more secure.
 *  Plugin Contributor [peterdog](https://wordpress.org/support/users/peterdog/)
 * (@peterdog)
 * [13 years, 1 month ago](https://wordpress.org/support/topic/does-not-help/#post-3641126)
 * It’s my pleasure. I’m a stickler for security and wanted to share this beyond
   my own clients who are on my host.
 * I will be working with some other developers to see if there is a way to kill
   that method entirely. Then it will be an ultimate security method.
 *  [gjefle](https://wordpress.org/support/users/gjefle/)
 * (@gjefle)
 * [13 years, 1 month ago](https://wordpress.org/support/topic/does-not-help/#post-3641127)
 * THANK YOU! I have to say, the day after installing your plugin, the number of
   alerts I received from wordfence dropped dramatically. I’m glad you guys were
   able to figure out why there were still some sneaky little buggers trying to 
   gnaw their way in – KUDOS to you guys!

Viewing 9 replies - 1 through 9 (of 9 total)

The topic ‘Did not help’ is closed to new replies.

 * ![](https://s.w.org/plugins/geopattern-icon/stealth-login-page_bdbdbd.svg)
 * [Stealth Login Page](https://wordpress.org/plugins/stealth-login-page/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/stealth-login-page/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/stealth-login-page/)
 * [Active Topics](https://wordpress.org/support/plugin/stealth-login-page/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/stealth-login-page/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/stealth-login-page/reviews/)

 * 9 replies
 * 5 participants
 * Last reply from: [gjefle](https://wordpress.org/support/users/gjefle/)
 * Last activity: [13 years, 1 month ago](https://wordpress.org/support/topic/does-not-help/#post-3641127)
 * Status: resolved