Support » Plugin: WPS Hide Login » Still getting tons of login attempts

  • Hi there,

    We have a site, that used to receive tons of login attempts, we installed your plugin and for a while these reduced dramatically.

    Now there are as many as before. We have renamed the login page a couple of times however this makes no difference, the login attempts are as many.

    Is this normal? I thought renaming the login page would reduce this.

    Worth an ask as not used this type of plugin before 🙂

    Many thanks.

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Author NicolasKulka

    (@nicolaskulka)

    Deactivate XMLRPC maybe?

    Hi there,

    I sent the issue to our hosting service and they came back pretty quickly with this:

    We have an update for you 🙂 The bad news, as you’re already aware, one of your sites was indeed under a brute force attack on the xmlrpc.php file. It doesn’t look like anything has been able to find your hidden login page. There were some attempts on the wp-login.php page, but they were blocked (thanks to WPS Hide Login).

    We have blocked access to the xmlrpc.php file and the attack has now stopped.

    Your plugin was doing it’s job…thank you 🙂

    A few other steps has further secured our site. Thanks for pointing this out.

    Similarly.

    I had previously tried other plugins that rename/hide wp-admin and wp-login and/or block xml-rpc but the login attempts continued.

    Using the log in the Loginizer plugin, I discovered that all the fake login attempts were to /login/.

    While WPS Hide Login does prevent visitors trying to reach wp-admin or wp-login, on my site at least it does NOT prevent anyone from reaching /login/, so even when this plugin is activated, the login attacks continue.

    Plugin Author NicolasKulka

    (@nicolaskulka)

    You need to change the default admin /login URL of the plugin.

    @nicolaskulka to clarify: using this plugin, I changed my Login url to something else e.g. ‘boxcar’. When I visit /boxcar, the browser gets redirected to a login page at /login/, which is the page my site is getting attacked on. Attempts to wp-admin and wp-login are correctly blocked as 404 pages.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Still getting tons of login attempts’ is closed to new replies.