Security : Who is doing what?

  • Hi all. From a security point of view, it seems WordPress doesn’t have any auditing. I’d like to know who is doing what, and especially who is logging on, and who failed to log on. Currently I have no visibility of any brute force attack on my WordPress system.

    Is there a plug in that I could load that will keep an audit trace on my WordPress system?

    Thanks!

Viewing 10 replies - 1 through 10 (of 10 total)
  • Thread Starter Massyn

    (@massyn)

    No takers?

    Nice idea – I will look into that one ?? At least something to keep track of logins and failed attempts.

    Things are looking good – I have the plugin currently logging all login attempts, as well as attempts to use the lost password form. Now I just need to get it to log a few more useful things ??

    The plugin is just about complete, but there is still more to be done. Here is some sample data from the log file. It should be pretty self-explanatory:

    LOGIN ATTEMPT [user: ] [pass: NO]
ERROR: The username field is empty. ERROR: The password field is empty.
LOGIN ATTEMPT [user: test] [pass: NO]
ERROR: The password field is empty.
LOGIN ATTEMPT [user: test] [pass: YES]
ERROR: Invalid username.
PASS RECOVERY ATTEMPT [login: test] [email: [email protected]]
ERROR: Invalid username / e-mail combination.
LOGIN ATTEMPT [user: admin] [pass: YES]
LOGIN SUCCESS [user: admin]

    Each line is prefixed with the date, time, and ip of visitor of course.

    Right now logging is just done to a data file, but a table in the database is certainly an option. I was also thinking about a nice log viewer in the admin panel.

    So does anyone think they would find this useful? If so, I will continue with it ??

    Run with it – I’d use it. Lord knows I can’t stand logging into my domain control panel to view Apache logs to see whats going on.

    Are you also adding logging for Post history?

    Post history is a good idea as well. I suppose I could set up options so the user can decide what gets logged.

    I am certainly going to continue with this – once I get a few other things finished up ?? Stay tuned!

    I wrote a plugin a while ago that will do this for you.

    https://www.ads-software.com/extend/plugins/bluetrait-event-viewer/

    Well, where were you when I first noticed this post? ??

    j/k – Nice work! ??

    Also take a look at Audit Trail.

    https://urbangiraffe.com/plugins/audit-trail/

    Thread Starter Massyn

    (@massyn)

    Sweet… Thanks for that. I’d most definitly check out these two plugins..

Viewing 10 replies - 1 through 10 (of 10 total)
  • The topic ‘Security : Who is doing what?’ is closed to new replies.