[Plugin: Login Security Solution] Feature request – suppress notification when user doesn't exi

  • Resolved bbeoj

    (@bbeoj)


    13 years, 8 months ago

    Thanks for this plugin!

    All my wordpress installs have no admin user. Almost all of the brute force attacks going on are just going after “admin”

    I don’t care to see that 250 attempts have been made to log in with admin, when admin doesn’t even exist. I need to filter the noise out from the signal…

    Also, can you make it take extra long when attacks go after a user that doesn’t exist?

    http://ww.wp.xz.cn/extend/plugins/login-security-solution/

Viewing 1 replies (of 1 total)
  • Plugin Author Daniel Convissor

    (@convissor)

    13 years, 8 months ago

    Hi bbeoj:

    You’re very wise to not have a user named “admin.” LSS is very noisy and I have taken steps to reduce that and have plans to reduce it further. Special handling for non-existent users seems like more trouble than it’s worth; an attack is an attack and after exhausting “admin” may turn to actual user names.

    Thanks,

    –Dan

Viewing 1 replies (of 1 total)

The topic ‘[Plugin: Login Security Solution] Feature request – suppress notification when user doesn't exi’ is closed to new replies.