Brute force log entry question

  • ScarLight

    (@scarlight)


    10 years, 5 months ago

    Excellent plugin, but im just curious, if there was a successful brute force attack will this plugin continuously log at the rate of the attack?

    Just wanted to know since it could potentially lead up to high server resource usage and even crash the owner’s site. Appreciate the reply and your thoughts. Thx

Viewing 3 replies - 1 through 3 (of 3 total)
  • WPWhiteSecurity

    (@wpwhitesecurity)

    10 years, 5 months ago

    Hello ScarLight,

    Thank you for the rating 🙂

    Good question! The good thing is that we thought about that already. The plugin will monitor up to 11 failed login requests from the same IP, to protect from some sort of DoS attack such as the one you mentioned. If there are more than 11 failed login attacks from the same IP the plugin will simply ignore them.

    From your end if you see that a particular IP address has 10+ failed login requests you know that that is not a legitimate failed login.

    While I trust the above answers your question do not hesitate to get in touch should you have any further queries.

    Thread Starter ScarLight

    (@scarlight)

    10 years, 5 months ago

    Thx for the reply. It was at the back of my mind and I couldn’t resist to ask. Glad to know you have done some implementation to this. Thumbs up!

    WPWhiteSecurity

    (@wpwhitesecurity)

    10 years, 5 months ago

    No worries at all 🙂 Feel free to ask any questions you might have or if you have any suggestions, please drop us a note on [email protected].

    Thank you for using our plugin and have a good day.

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Brute force log entry question’ is closed to new replies.