User locked out even the folder is protected

  • Resolved The_Mask

    (@the_mask)


    9 years, 6 months ago

    Hello guys,

    I’m under attack in this moment and the hacker seems to use various proxies. That’s why I decided to password protect the folder wp-admin from cPanel. So I made the login link unavailable. But even so, Wordfence continues to send user locked out notifications. Is that normal?
    On the other hand, Advanced Blocking doesn’t work. I activated Live Traffic but with no effects.

    https://www.ads-software.com/plugins/wordfence/

Viewing 1 replies (of 1 total)
  • Plugin Author WFMattR

    (@wfmattr)

    Some attacks come in through XML-RPC, which could still cause IPs to be blocked repeatedly, even when the login form and wp-admin are unavailable. If you don’t use XML-RPC on your site (including trackbacks, the WordPress mobile app, or desktop blogging software to post on the site), you can disable XML-RPC using a plugin like this one: Disable XML-RPC

    Blocking wp-admin can cause other issues, including preventing some Wordfence pages from working, so if the above plugin stops the attacks from showing up, you may want to make wp-admin available again.

Viewing 1 replies (of 1 total)
  • The topic ‘User locked out even the folder is protected’ is closed to new replies.