WordPress.org

Plugin Reviews

Limit Login Attempts

Limit rate of login attempts, including by way of cookies, for each IP. Fully customizable.

110111213

128 reviews
Average Rating
4.7 out of 5 stars
You are currently viewing the reviews that provided a rating of 5 stars. Click here to see all reviews.
Perfect
By , for WP 3.5.1

Just install and activate, the default settings are reasonable.

Should be in WP core
By , for WP 3.5.1

For a long time, this plugin has been proven to prevent WP sites from hack attempts logging in with easy to guess user names and passwords.

The recent massive brute force attacks againts WP should be a sign to consider merging this plugin into WP core
http://codex.wordpress.org/Brute_Force_Attacks

Simple and effective
By , for WP 3.5.1

Simple to get running and highly effective. A great security tool for any WordPress site!

Keep it simple
By , for WP 3.5.1

Does one thing, good.

Awesome!
By , for WP 3.5.1

Thank you! Works effortlessly.

I installed this after my ISP sent out a message to all the hosting clients that there were repeated Brute Force attempts on all WordPress installations.

I feel a better knowing this is installed.

Thanks Laura for putting out the word!
By , for WP 3.5.1

I just got an email (tip) from Laura Betterly today.

She advised everyone who has a WP installation to get this plugin. Of course, I have been using it on all my installs for many months and as pointed out by nearly everyone on this forum, it works without flaw.

I also agree that it should be part of the WP core but since it's not, it's doing just fine as a standalone plugin.

I highly recommend this plugin for anyone who wants to keep their WP installation safe and as Laura and other here have pointed out, stop using admin as a username.

Doing that in combination with this plugin will thwart 90% of attacks especially by humans.

If their mission is to gain access to your dashboard, they will find themselves in a bit of a box when the obvious admin username try fails.

If you leave the plugin as configured, they will only have 3 more 'at bats' which they will quickly waist and expose themselves as hacker who should be IP banned (I do as soon as I get their IP from the log).

Good
By , for WP 3.5.1

Good plugin, life!

Great for Security
By , for WP 3.5.1

There's a reason why this plugin is mandatory for some hosting providers. It prevents brute force attacks very well. I think it should be moved into core!

Very happy with free version
By , for WP 3.5.1

Very happy with the free version. Does everything it says, and has a clear interface.

Great job. Thank you!
By , for WP 3.5.1

I kept seeing attempts at brute forcing one of my sites the other day, searched and found this plugin. It has stopped attempts on 2 sites.
And I agree with jwheck - don't use "admin" as a username.

You must log in to submit a review. You can also log in or register using the form near the top of this page.