Password Guessing Brute Force Attacks?

  • Resolved webmark487

    (@webmark487)


    1 year, 10 months ago

    Hi!

    Does “Password Guessing Brute Force Attacks” under Settings / Alerts also work in the free version?
    So that an IP address is blocked after too many failed login attempts. At least for some time.

    And if so, what does that mean. Would the respective IP address be visible in the Sucuri section of the WP backend? And is it possible to configure the time?

    Best regards and thank you in advance

    Markus

    • This topic was modified 1 year, 10 months ago by webmark487.
Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support sucuri1

    (@sucuri1)

    Yes, “Password Guessing Brute Force Attacks” under Settings / Alerts does work with the free version. You have the option to pick how many attempts you want to allow before the IP is blocked.

    Yes, that IP will be visible in the WP backend.

    Thank you

    Thread Starter webmark487

    (@webmark487)

    ah, i see. thx.

    I configured “consider brute-force attack after: 30 failed logins per hour” now.

    Does this mean that an ip address is only blocked after 1 hour?
    What if there is an attack with 100 login attempts within 5 minutes?

    Will there be a list of IP adresses then, which I can edit by myself (which I could reset for example?)

    Plugin Support sucuri1

    (@sucuri1)

    @webmark487 If you have 30 failed logins in 5 minutes the IP will be blocked at that point. The second it hits the failed login attempts limit it will be blocked and there will be a list of IP addresses available for you to see.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Password Guessing Brute Force Attacks?’ is closed to new replies.