WordPress.org

Support

Support » Plugins and Hacks » block admin user name?

block admin user name?

  • maddogmcewan
    Member

    @maddogmcewan

    [Topic modified “URGENT REQUEST” is useless and all caps is considered yelling and is rude]

    Wordfence has saved our bacon a few times in last few weeks – best there is – need urgent way to set up a rule

    Last few hours have been hit every second by attempted admin username logins – need a way to block automatically any attempt to login as admin username

    http://wordpress.org/extend/plugins/wordfence/

Viewing 3 replies - 1 through 3 (of 3 total)
  • There is an option in WordPress to do that. My guess is the hacker is then changing IP addresses. My solution to the problem was to create a list of blocked ID addressses in the .htaccess file.

    RobinInTexas
    Member

    @robinintexas

    In the Wordfence options

    Login Security Options
    Immediately lock out invalid usernames


    is already there. If you don’t have an admin user there’s no feature needed.

    Login Security Options
    Immediately lock out invalid usernames

    The problem with this is that you will lock out clumsy typists with valid user accounts. It’s not a solution. A solution would be the ability to lock out people who try certain login usernames, such as “admin” or “administration”, or the logins of previously banned users, etc.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘block admin user name?’ is closed to new replies.