Login LockDown WordPress Plugin

Slide image
Slide image

Prevent brute force attacks on your WordPress-powered website with this lightweight plugin. Limit the number of login attempts from a given IP range within a certain time period. Sit back, relax, and let it protect your site from vicious attacks against your WordPress site’s login. Login LockDown WordPress Plugin records the IP address and timestamp of every failed WordPress login attempt. 

If more than a certain number of attempts are detected within a short period of time from the same IP range, then the login function is disabled for all requests from that range. 

The lockout IDs and timestamps are stored in the user metadata table. Optionally, besides lockout a host after a number of retries, it is possible to slow down the response time after each attempt. Thus, if there is only one attacker, it will take him hours to exhaust all possible passwords for user login names. This helps to prevent brute force password discovery. 

Currently, the plugin defaults to a 1-hour lockout of an IP block after 3 failed login attempts within 5 minutes. This can be modified via the Options panel. This helps to prevent hackers or spam programs from guessing your password. Banned IPs can be released manually if needed. Administrators can release locked-out IP addresses manually from the Login LockDown admin panel. You can configure it to disable logins for a selected number of hours based on how many failures occur from a certain IP range within a selected number of hours. 

Because of its unique approach to login security and brute force attack prevention, this plugin is extremely effective. This allows passwords (or hashes) to be brute-force cracked with relative ease. Administrators can define allowable log-in attempts, time periods,s and/or IP ranges. Login LockDown records the IP address range, refused login username, and time for each failed attempt. 

Post a Comment

Prevent brute force attacks on your WordPress-powered website with this lightweight plugin. Limit the number of login attempts from a given IP range within a certain time period. Sit back, relax, and let it protect your site from vicious attacks against your WordPress site’s login. Login LockDown WordPress Plugin records the IP address and timestamp of every failed WordPress login attempt. 

If more than a certain number of attempts are detected within a short period of time from the same IP range, then the login function is disabled for all requests from that range. 

The lockout IDs and timestamps are stored in the user metadata table. Optionally, besides lockout a host after a number of retries, it is possible to slow down the response time after each attempt. Thus, if there is only one attacker, it will take him hours to exhaust all possible passwords for user login names. This helps to prevent brute force password discovery. 

Currently, the plugin defaults to a 1-hour lockout of an IP block after 3 failed login attempts within 5 minutes. This can be modified via the Options panel. This helps to prevent hackers or spam programs from guessing your password. Banned IPs can be released manually if needed. Administrators can release locked-out IP addresses manually from the Login LockDown admin panel. You can configure it to disable logins for a selected number of hours based on how many failures occur from a certain IP range within a selected number of hours. 

Because of its unique approach to login security and brute force attack prevention, this plugin is extremely effective. This allows passwords (or hashes) to be brute-force cracked with relative ease. Administrators can define allowable log-in attempts, time periods,s and/or IP ranges. Login LockDown records the IP address range, refused login username, and time for each failed attempt. 

$

$

DEV Joined: December 2021
  • Tags

Need custom software development?

Let our experienced software development team assist with your next custom project!