Support » Plugin: Cerber Security & Limit Login Attempts » People can still find my custom login page…

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author Gioni

    (@gioni)

    Hi!

    What are your settings? Did you check:

    1. Disable wp-login.php on the Main Settings tab
    2. Disable XML-RPC on the Hardening tab?

    I have disabled wp-login.phone but not XML-RPC. I wasn’t sure if the second option was related to the wp-admin login access. I have now enabled it. I’ll keep and eye and let you know.

    Thanks.

    Plugin Author Gioni

    (@gioni)

    Hackers just use XML-RPC interface as a way to obtain admin password via a brute-force attack. It’s enabled by default and usually unprotected.

Viewing 3 replies - 1 through 3 (of 3 total)
  • You must be logged in to reply to this topic.