Admin url changed many times , but still receiving brutt force attacks

Viewing 9 replies - 1 through 9 (of 9 total)
  • Plugin Support MaximeWPS

    (@seinomedia)

    Hello,

    Thanks for using WPS Hide Login.

    Have you got a public access on your website for suscribers ?

    Have you set a comment area with login link ?

    I have same problem here. The site address is https://zerobs.pl/ – no public login link, no comments, no access/registration for subsribers. Yet, despite many changes of thelogin address I am getting a bruteforce attack :/

    Plugin Support MaximeWPS

    (@seinomedia)

    Hello,

    Is all your install up to date ?

    Is xml-rpc option disabled ?

    Thread Starter bacharoun

    (@bacharoun)

    xml-rpc is not disabled , should i disable it?

    Plugin Support MaximeWPS

    (@seinomedia)

    yes

    Thread Starter bacharoun

    (@bacharoun)

    Great, i don’t get brute force attacks anymore

    Hi – Same issue here. I installed “Disable XML-RPC” plugin, activated it, cleared my cache and can still access via wp-admin, even though I changed it and that should now go to 404. Help please!

    • This reply was modified 1 year, 9 months ago by cmeurer.
    • This reply was modified 1 year, 9 months ago by cmeurer.

    @bacharoun – That’s great it helped with the brute force attacks, but can you still login via wp-admin? If not, then can you explain how you fixed this?

    Thread Starter bacharoun

    (@bacharoun)

    @cmeurer

    i disabled the xml-rpc by adding this code to theme functions file

    add_filter( 'xmlrpc_enabled', '__return_false' );

    i can login via the new login path made by wps-hide, the normal wp-admin is forbidden (the plugin works as it should)

Viewing 9 replies - 1 through 9 (of 9 total)
  • The topic ‘Admin url changed many times , but still receiving brutt force attacks’ is closed to new replies.