Static IP Address Code Not Blocking Log-in Attempts

  • Resolved newvisionmedia

    (@newvisionmedia)


    10 years, 2 months ago

    Hi,

    We’ve just had our Static IP Address installed and have added the following code to the “CUSTOM CODE BRUTE FORCE LOGIN PAGE PROTECTION:” section.

    # Protect wp-login.php from Brute Force Login Attacks based on IP Address
<FilesMatch "^(wp-login\.php)">
Order Allow,Deny

# Add your website domain name
Allow from www.appareltruth.org

# Add your website/Server IP Address
Allow from [OUR SERVER IP ADDRESS]

# Add your Public IP Address using 2 or 3 octets so that if/when
# your IP address changes it will still be in your subnet range. If you
# have a static IP address then use all 4 octets.
# Examples: 2 octets: 65.100. 3 octets: 65.100.50. 4 octets: 65.100.50.1
Allow from [OUR OFFICE IP ADDRESS]

</FilesMatch>

    We then click “Create secure.htaccess File” and then “Activate Root Folder BulletProof Mode” and “Activate wp-admin Folder BulletProof Mode”

    We have Wordfence installed, which keeps notifying us stating that people are being blocked by the attempt to log-in.

    We’re unsure to why we are getting this error, as we thought that it was impossible for people to access the log-in page now due to our Static IP Address.

    Would you be able to confirm that our log-in page is in fact secure, or whether we need to do anything to harden the installation.

    Thanks,
    Jamie

    https://ww.wp.xz.cn/plugins/bulletproof-security/

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author AITpro

    (@aitpro)

    10 years, 2 months ago

    When I go to your website Login page using a Proxy (boomproxy.com) I am blocked/Forbidden and see this BPS message below. So your IP based Brute Force login page protection code is working correctly. You can test this yourself by using boomproxy.com and going to your login page. I am not sure why wordfence is telling you something different. So you would need to contact wordfence to find out what that problem is with wordfence.

    newvisionmedia.co.uk 403 Forbidden Error Page

    If you arrived here due to a search or clicking on a link click your Browser’s back button to return to the previous page. Thank you.

    IP Address: 96.31.64.186

    Plugin Author AITpro

    (@aitpro)

    10 years, 2 months ago

    Did this answer all of your questions? If so, please resolve this thread. If not, please post any additional questions you may have. Thanks.

    Thread Start Date: 3-31-2016
    Current Date: 4-1-2016

    Plugin Author AITpro

    (@aitpro)

    10 years, 2 months ago

    Did this answer all of your questions? If so, please resolve this thread. If not, please post any additional questions you may have. Thanks.

    Thread Start Date: 3-31-2016
    Current Date: 4-4-2016

    Plugin Author AITpro

    (@aitpro)

    10 years, 2 months ago

    Assuming all questions have been answered – the thread has been resolved. If you have additional questions about this specific thread topic then you can post them at any time. We still receive email notifications when threads have been resolved.

    Thread Start Date: 3-31-2016
    Thread Resolved/Current Date: 4-5-2016

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Static IP Address Code Not Blocking Log-in Attempts’ is closed to new replies.