Securing your wordpress blog or website is really important today! Many hackers and spammers try a lot of malicious attacks to destroy useful websites. Its your duty to protect your wordpress site from malicious attacks. You can try a lot of tricks and methods provided by experts. Also there are a lot of plugins that make your wordpress site secure. Here is a review of Limit Login Attempts plugin.
Limit Login Attempts
Limit Login Attempts is a free plugin that anybody can use on their wordpress blog or website to make it more secure from malicious hacks and attacks! As the name goes, it limits the number of login attempts when the username or password provided is wrong. For example, if a person tries to login with a wrong username and password for 3 times, he or she cannot retry login for 60 minutes from that moment. You can change this limiting time in Plugin settings.
Plugin Settings
Limit Login Attempts plugin is really easy to manage. Settings of the plugin is really simple! Below screenshot best describe its settings.
In the plugin settings, you can see 3 main sections named Statistics, Options and Lockout log. Lets take a look at each of them!
Statistics
It displays total number of lockouts. When a user is limited to retry login, it is termed as one Lockout. You can also see the button to reset the Lockout counter.
Options
Here is where you can change the settings of the plugin. Let me tell you how the plugin works according to the above settings. When a user inputs wrong username or password for 3 times, he or she will not be able to retry for 60 minutes from that moment. Its called a Lockout! After 60 minutes, the user can retry login. If he or she again fails to login, another lockout will be happened. As the user has passed 2 lockouts, he or she will not be able to retry for 24 hours from that moment! The last setting that you see is “12 hours until retries are reset“. When a user fails to login for the first time, he or she will see a message like “2 attempts remaining“. This 2 attempts are for 12 hours interval! If the user didn’t retry for 12 hours, the retries are reset and the user will have 3 attempts to try!
You can also see some other settings there. It shows your IP address and you can specify whether you are using a direct connection or a proxy. You can also see the option to handle cookie login. Notify on lockout specifies when the site admin is supposed to be notified about the lockouts! This is useful because you can simply know when the plugin does its job! When someone meets a lockout, the site admin will be notified via email that a user had a lockout and shows the IP address, tried login name etc.
Lockout Log
It displays the history of lockouts and shows the details of lockouts like IP address, tried username, number of lockouts etc.
Using Limit Login Attempts Plugin is really useful to protect your wordpress blog or website from malicious login attacks. Its free to download and easy to use.