Support » Plugin: Limit Login Attempts » [Plugin: Limit Login Attempts] Can a hacker fake the IP address and get past this blocker?

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author johanee

    (@johanee)

    No, they cannot use a false IP address to make login attempts.

    As for an attempt using a large number of IP addresses (many computers): it doesn’t really help the attacker much as long as you have a good password (12+ truly random characters). We’re talking age of the universe time-frames here.

    They could use a proxy, tor or other anonymizing service to access the site from different addresses, but as johanee stated the most important thing is having a good password that makes brute forcing a password essentially impossible.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘[Plugin: Limit Login Attempts] Can a hacker fake the IP address and get past this blocker?’ is closed to new replies.