WordPress.org

Forums

Security-protection
No apparent change (3 posts)

  1. mdunham
    Member
    Posted 1 year ago #

    I'm on WordPress multisite with mapped domains. I have WordFence running and set to alert on failed logins and block additional attempts after a small number of failures from the same IP.

    I set this plugin on two sites. This morning, emails from WordFence confirm those sites were hit by successive attempts from a bot network along with the other sites in the network.

    The theory sounds good, but in fact, if it works like it is supposed to, I believe it should have kept the bots from attempting to login at all. It did not.

    Hopefully there will be a better version or someone else who finds a fix for botnets. So far, this doesn't seem to be it.

  2. webvitaly
    Member
    Plugin Author

    Posted 1 year ago #

    Can you share a link to your site?
    You may send the link privately using feedback form.

  3. webvitaly
    Member
    Plugin Author

    Posted 1 year ago #

    I believe it should have kept the bots from attempting to login at all.

    Yes, it should stop some part of bots, which rely on special response from site after login request.

    I have WordFence running and set to alert on failed logins and block additional attempts after a small number of failures from the same IP.

    By the way, WordFence let to try bots to login from one IP. And Security-protection plugin blocks all bot's login tries and Security-protection makes this operation more easily, because it does not read or write nothing to database or pings other services or etc. And also Security-protection does not affect users at all with login counter or etc.

Topic Closed

This topic has been closed to new replies.

About this Plugin

  • Security-protection
  • Frequently Asked Questions
  • Support Threads
  • Reviews

About this Topic

Tags

No tags yet.