My site was going through a brute force attack for over 24 hours.
I had done all the steps to protect my site and at this stage it had not been compremised. The hackers were using proxy IP addresses so I couldn't easily established a fixed IP address to block. This type of hack is run by a program or script and is expecting a response from my server of incorrect username or password so it can continue.
By simply installing Captcha, that just simply worked straight from install, the brute force attack stopped. Presumably because the server response was not what the script was expecting.
Thanks and great plug-in!!
Authentic one-click installation, no settings needed.
Adding this plugin stopped 99% of brute force attack on two different WP installations. Much less job (and notifications) for security plugins.
Autentica installazione in un click, nessun bisogno di settaggi.
Aggiungere questo plugin ha fermato il 99% dei tentativi di intrusione su due diverse installazioni di WP. Molto meno lavoro (e notifiche) per i plugin dedicati alla sicurezza.
Muito bom parabês para o ator que crio ele....
Funciona perfeitamente. Obrigado!
Very easy too implement, nice to see.
No conflicts with other captcha
This plugin does exactly what it says and has been effectively thwarting the ongoing brute force wp-login attacks.
I was being hit by the recent brute force attempts to login as admin. I have no user 'admin' but it was getting on my... well you know.
It's only been 24 hours but I don't as yet have a single failed login in that time. The first time in many weeks.
I will update this if (when) things change.
UPDATE (October 2013)
It's now been 6 months with no brute force attempts so I decided to switch the captcha off. 30 minutes (and over 300 failed 'admin' login attempts later) I switched it back on.
'admin' has again stopped trying to login.
Still works beautifully.
Plugin is working perfectly
You must log in to submit a review. You can also log in or register using the form near the top of this page.