WordPress.org

Forums

Security-protection
Great idea!!! (4 posts)

  1. holgerhubbs
    Member
    Posted 1 year ago #

    I started using the WP plugin "Stream" and monitored my sites via RSS.
    Then I looked into the plugin "WordFence". And also tried "Rename wp-login.php".

    I haven't yet tried "Security-protection" but the idea is very good for right now.

    What a waste of energy, and creativity, all this hacking, trying to break into accounts. People spent days, weeks, months behind their computers to invent more nonsense.

    Thank you for his plugin ;-)

    I think you should set the default to sending emails; this way admins get an idea that the plugin is working; then they can turn the emails off.

  2. webvitaly
    Member
    Plugin Author

    Posted 1 year ago #

    Thank you very much for your feedback.

    I cannot set sending emails to default, because it could be very annoying and not everyone will know how to disable it.
    But you are right - every admin should know about the brute-force attacks and I am thinking how to show that there are attacks on hacking admin's password. Probably I could add the counter of blocked brute-force attacks to the admin-bar or something similar.

  3. holgerhubbs
    Member
    Posted 1 year ago #

    In your email you could add a link to a page, explaining how to disable the emails...

  4. holgerhubbs
    Member
    Posted 1 year ago #

    I see now the trouble with too many emails... I just got 300 in a short time span.

    Some quick ideas:
    - keep track of sent emails
    - allow only 3 emails per 30 minutes
    - add an easy statistic to the email, like: 3,000 login attempts within the last 24 hours...

    Just some raw thought. ;-)

Topic Closed

This topic has been closed to new replies.

About this Plugin

  • Security-protection
  • Frequently Asked Questions
  • Support Threads
  • Reviews

About this Topic

Tags

No tags yet.