[Plugin: Limit Login Attempts] Feature Request

  • Hello Johan,

    I am using your awesome limit login attempts plugin and would like to see a feature added….apologies if this is the incorrect location to make the request.

    I also use WP-Members by Chad Butler and I use the login widget. When there are two many bad login attempts, the WP-Members widget doesn’t tell me the countdown like https://site/wp-admin page does.

    So I was wondering if your plug-in could have a feature that, once the limit is reached, your plug-in could redirect to another URL or page. Come to think of it, it would also be nice if a threshold could be used to redirect to another page-a warning page.

    In summary,
    limit login attempts detects 2 attempts left (warn) automatically direct to a warning page.

    limit login attempts detects the limit and locks, but on the lock immediately directs to a page indicating the logins for the site are locked.

    Thanks a lot,
    Ordinary

    https://www.ads-software.com/extend/plugins/limit-login-attempts/

Viewing 3 replies - 1 through 3 (of 3 total)
  • Thread Starter Ordinary

    (@ordinary)

    I wrote this:
    “limit login attempts detects the limit and locks, but on the lock immediately directs to a page indicating the logins for the site are locked.”

    but meant this:
    “limit login attempts detects the limit and locks, but on the lock has the ability to immediately direct to a site page that one could edit indicate the logins for the IP or user are locked from the site.”

    Thanks much.

    I would like to second this feature request.

    As it stands now, a hacker bot will still get the login page even after they are locked out and they will continue to try a brute force attack. it would be nice if a locked out IP would be redirected to a different page.

    Ideally I’d like to redirect them to a HoneyPot (projecthoneypot.org)

    Thanks-

    I would like to have the option for permanent bans after a certain number of attempts, particularly if the username “Admin” is being attempted.

    On some sites I administer, I currently have the numbers set to 9999 minutes and then 9999 hours. This forces them to wait for a week to try again, and then they get banned for a little over a year. Not bad. I do this on sites that are not supposed to have non-admin users logging in in the first place.

    If we could have a special rule for the Admin user name, it would help a lot in weeding out the awful bots that assault wordpress sites continuously.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘[Plugin: Limit Login Attempts] Feature Request’ is closed to new replies.