This plugin is the best solution yet for preventing brute force login attacks on WP sites. I've tried various other solutions (.htaccess, limit login attempts plugin, etc) but the brute forcers have found ways around all of those.
In addition, the team at bruteprotect is responsive with their support and actively working to improve the plugin. Keep up the good work!!!
Their "phone home" server had some glitches, but they jumped right on a fix and upgrades to avoid future problems. It has been rock solid until this one glitch, so I expect it will be reliable in the future.
Edit update: All seems to be very stable now, have not had any issues for 9 months and and quite impressed haw few spurious login attempts get through now...
<s>The error routine needs to be a bit more robust - i.e. if the server is down, it needs to fail more gracefully. I was able to log into my site after returning to the log-in form a second time - the failsafe did not appear at first.</s>
Otherwise a great concept and has reduced the deluge of hack attempts to a tiny trickle.
I have had no issues out of this plug in. It does what it says it will do and adds a layer of protection. I tested on one site and have since added it to all of the sites I use.
Stops bots cold. Just install it and forget it. A no brainer
Not much to say, other than the fact that this seems to work, and hasn't caused any problems with my other plug-ins. A nice product!
Nice and light weight compared to others. Simple as pie to setup for the novice.
Thank you! I have a server with several wordpress sites on it that was getting completely bogged down by tens of thousands of login attempts. I installed BruteProtect on all my sites and saw a drop in RAM usage of 600 MB! And the CPU spikes that were happening regularly have disappeared. This is a no-brainer, must-install plugin IMO.
… easy and effective, great idea and if an attack is on the way, you can see in some backends (e. g. cPanel) how it works when it frees memory and porcessor usage due to an attack … thanks :)
So right now my bruteprotect is protecting my previous site, I had a beta site before going live, and now that I went live I would like bruteprotect to be protecting my current site but its only protecting my beta site. I already uninstalled the bruteprotect plugin and reinstalled it, but that did not solve it. Any help would be cool, thanks
I don't fully understand all the details of securing a site, and it's great to have a plug-in I trust. It's impressive to see nearly all support tickets resolved, and I got a response within minutes. I learned about this plugin from one of the authors at a WordCamp, and I appreciate his willingness to travel and contribute to the WordPress community.
You must log in to submit a review. You can also log in or register using the form near the top of this page.