Support » Plugin: WP-Activity » feature request

  • Hello,

    I am quite happy with this plugin, so first of all, thank you 🙂

    I have used this plugin to keep an overview over activity on the blog. I do see that from time to time I get spammed with failed attempts to login. When these happen from the same IP I can block it using the blacklist, but sometiems I also get multiple login attempts sequentually timestamped, but from different IP’s. These are harder to block without setting the max failed attempts very low (incconvenient for the actual users). However, it occurs to me that all of these attempts seems to go for a standard set of usernames, based on default values or domain name used for hosting the site. Therefore, to counter this issue even further, I was wondering if it would be possible to include an option for defaulting login attempts using certain loginnames directly to the IP blacklist (basically blacklist them on first attempt)?

    E.g. assuming you have changed the default username ‘admin’ to something else and no user is using anything like this as a username, this would be a perfect username to automatically blacklist. Same goes for {domain} or {domain} excluding tail (.com, .ue etc.).

    At least I would find this very useful 🙂


  • The topic ‘feature request’ is closed to new replies.