Ban Users ; Failed Login Records

Hi,

Thank you for reaching out to us.

Is there a way to automatically permanently add IP(s) under Blacklist Manager that fall under Failed Login Records?

The plugin developers will investigate further your request.

I frequently have been seeing a lot of failed login attempts (all not legitimate as I have whitelisted the IPs that can access my wordpress admin site under Login Lockdown IP Whitelist Settings) at my website.

Do you have the Rename Login Page brute force feature enabled?

Do you have one of the following features also enabled in your site? They are located in WP Security -> Firewall -> Basic Firewall Rules -> WordPress XMLRPC & Pingback Vulnerability Protection.

Option1 = Completely Block Access To XMLRPC:
Option2 = Disable Pingback Functionality From XMLRPC:

These features can help reduce the amount of login attempts to your site substantially.

Kind regards

• This reply was modified 5 years, 6 months ago by mbrsolution.

Hi there,

I have not changed the Rename Login Page Settings yet.

Regarding options to try, here are already the existing settings under my Firewall prior to posting.
Basic Firewall Rules – all enabled
Additional Firewall Rules – all enabled
6G Blacklist Firewall Rules – checked 6G
Internet Bots – unchecked blocking of fake Googlebots (my SEO complained that my site traffic went down heavily)
Prevent Hotlinks – enabled
404 Detection – enabled ; Timeout 600 mins ; Lockout Redirect URL : https://localhost

For reference, here are my Login Lockdown settings
Unlock Requests – disablde
Max Login Attempts – 1
Login Retry – 10080 mins
Time of Lockout – 131400 mins
Display Generic Error Message – enabled
Instantly Lockout Invalid Usernames – enabled
Instantly Lockout Specific Usernames – (admin; test; etc)
Notify By Email – my email add

I’ve even enabled Google reCAPTCHA and enabled all options under Login Captcha.

So far, given that setup, I am still getting quite a lot new IPs (under Failed Login Records) almost every minute which are random IPs that are not my target audiences (ex: Russia, Ukraine, Germany, etc).

Another question is…

Since there is a Login Whitelist option already, is it possible to block all IPs (0.0.0.0 or *) accessing my WP Login page. That way, WP Login will only be accessible only on whitelisted IPs?

• This reply was modified 5 years, 6 months ago by edmonaft.
• This reply was modified 5 years, 6 months ago by edmonaft.

If it is possible to enhance Login Whitelist in a manner that if the IP is not in the whitelist, it is prevented to access WP-Login page.

Hi,

I have not changed the Rename Login Page Settings yet.

Can you enable this feature? This will stop a lot of what is happening in your site at the moment.

If it is possible to enhance Login Whitelist in a manner that if the IP is not in the whitelist, it is prevented to access WP-Login page.

That is how Whitelist works. It only allows the IP address in the list access to your site.

Kind regards

Ok, will work on renaming login page…
For the whitelisting, does it mean (once enabled and populated with IP), if my network is not on the list will unable to at least access the wp login page?

Hi,

For the whitelisting, does it mean (once enabled and populated with IP), if my network is not on the list will unable to at least access the wp login page?

That is correct. Only the IP address/es in the list will have access to your site.

Kind regards