Brute Force Attacks

  • Hello,

    on my website https://www.klessath.de I have the plugin Theme My Login 6.4.4 in use. I am very happy with it.

    For about 2 months, my site is constantly attacked by brute force attacks. In the plug-in security settings I have the file wp-login.php disabled and the login attempts per hour to 3 limits per hour (blocking 12 hours).

    Nevertheless, the attacks do not stop. I have now collected information in WordPress forums and other WordPress technical papers. There various advice is given. U. a. Recommends to set secure passwords that 2-way authentication with the Google Authenticator or a password using the .htaccess file.

    Other approaches are to move WordPress into a subdirectory or disable the XML-RPC interface, in order to eliminate attack surface.

    Before I do that, I want to know how the plugin “Theme My Login” in harmony with it. I would be delighted to receive professional guidance and advice from you.

    Thank you.

    https://www.ads-software.com/plugins/theme-my-login/

Viewing 4 replies - 1 through 4 (of 4 total)
Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Brute Force Attacks’ is closed to new replies.