WordPress.org

Support

Support » Plugins and Hacks » [Resolved] Not stopping the latest bot attacks

[Resolved] Not stopping the latest bot attacks

  • I’ve installed the plugin and it works if I try it – direct calls to wp-login get redirected and I get redirected on log out the but the login attempts made by the current bot are getting past the check. I know because I’ve got the Limit Login Attempts plugin and its happily sending me emails showing that things are getting through

    http://wordpress.org/extend/plugins/stealth-login-page/

Viewing 4 replies - 1 through 4 (of 4 total)
  • I think this might be because they are going for direct POST calls..

    Plugin Author Jesse Petersen

    @peterdog

    That is how it is happening. I had it solved at one point, but a more vital thing broke when I did, so I’m still tracking down how to block them all. I haven’t had any lockouts since 2.1.2, though. 2.1.0 and 2.1.1 had some issues that I closed back up – I believe 2.0.2 is the most stable version for brute attacks, but it doesn’t allow you to use the lost password link or the logout link in the admin toolbar.

    @jesse: Thanks for the update. Sending you code luck to solve the issue for later versions of SLP. I only just started using it and can confirm the effectiveness of this plugin as the number of lockouts have plummeted (was over 1500 in one week).

    I have only had 4 so far these two days with 2.1.2.

    Thank you for your hard work.

    Plugin Author Jesse Petersen

    @peterdog

    Download 3.0.0 today.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘[Resolved] Not stopping the latest bot attacks’ is closed to new replies.