• О WordPress
    • О WordPress
    • WordPress.org
    • Документация
    • Поддержка
    • Обратная связь
  • Войти
  • Регистрация
Перейти к содержимому

WordPress.org

Русский

  • Главная
  • Темы
  • Плагины
  • Поддержка
  • Документация
  • Новости
  • О нас
  • Сообщество
  • Контакт
  • Получить WordPress

Плагины

  • Любимые
  • Бета-тестирование
  • Разработчикам
Скачать

Limit Login Attempts

Автор: miniOrange
  • Детали
  • Отзывы
  • Установка
  • Поддержка
  • Разработка

Описание

WordPress Firewall, Advanced SQL Injection, Cross Site Scripting, Remote File Inclusion, Brute Force Login Security, Spam Protection & Limit Login Attempts for Login Protection, IP Blocking, Database backup, protect site from hacks and malware. Brute Force protection, anti spam & Limit Login Attempts provides Login Security, Registrations Security, Brute Force attacks protection, IP monitoring and IP Blacklisting, strong passwords enforcement. Brute Force login attack can be conducted in number of ways. We provide you enterprise level security, protecting your WP website from hackers and malwares.

Features :-

LIMIT LOGIN ATTEMPTS

This protects your site from attacks which tries to gain access / login to a site with random usernames and passwords. A Brute Force Attack is the simplest kind of method to gain access to a website. Hackers tries with random usernames and passwords, over and over again, until they gets in. Most of the time such attacks are automated allowing the hackers to try millions of time in a short span.
We help you protect your website against brute force login attacks by blocking an IP address of the hacker after a specified limit of failed login attempts within a specified time.

LIVE TRAFFIC AND AUDIT

Our advanced reporting help you keep track of activities on your website. Keep Real-time watch on traffic and get details on every request. Also you get the option for filtering reports with various criterias like username, IP address, date. Also you can export reports in csv and pdf.

BRUTE FORCE ATTACKS PROTECTION

From time to time hackers may try to break into your WordPress site by guessing your admin password. By default, WordPress allows users to try different passwords as many times as they want. This is also known as brute force attack. However, you can change this and add an extra layer to protect your site and for the login security to your WordPress site.
Brute Force Login Protection with IP Blocking security help you monitor login attempts from your users and hackers. We keep track of user’s login attempts and we send alerts to administrators for unusual activities if someone exceeds allowed failed login attempts.

BLOCK REGISTRATIONS FROM FAKE USERS

We helps you to detect suspicious email addresses instantly. Most of the users use disposable,fake or temporary email addresses for registering on online websites. We help you stop accepting registrations from those emails.

  • Firewall – WordPress Firewall is built specifically for WordPress and blocks malicious traffic on your WordPress Site.Protects from Advanced SQL injection, Cross-site Scripting, Remote-File inclusion, Local File Inclusion and other attacks.
  • Malware Scanner – The scanner will scan all the files including WordPress core, plugins and theme files to know if any of them have malware and malicious URLs.
  • Realtime Global IP blocking – It protects from malicious IPs and lets the genuine traffic on your WordPress.
  • Rate Limiting – It controlling the amount of incoming requests from a specific IP to a service(Website).
  • Login Security – Limit Login Attempts and track user login attempts
  • User Registration Security – Disallow Disposable / Fake email addresses
  • Brute Force Login / Attacks Protection — We keep track of user’s login attempts and we send alerts to administrators for unusual activities if someone exceeds allowed failed login attempts.
  • Password protection – Enforce Strong Password — Check Password strength for all users
  • IP Blocking — Manual and automatic blocking of IP’s ( Blacklisting and whitelisting included ).
  • 2 Step Verification (Two Factor) — Rather than relying on a password alone, which can be phished or guessed, Two Factor authentication adds a second layer of security to your accounts.
  • Risk Based Access — Dynamically analyzes user requests and apply business security policies to application access which minimizes the risks of unauthorized access.
  • Advanced User Verification — OTP Verification plugin verifies Email Address/Mobile Number of users by sending verification code(OTP) during registration. It removes the possibility of a user registering with fake Email Address/Mobile Number.
  • Protection for WordPress files — We provide you option to prevent access to user from browsing directory content and editing files from WP Dashboard (Themes and plugins).
  • Google reCAPTCHA protection for login, registration.
  • Encrypted Database and File Backup — Backup your WordPress database files easily with a single click. You can either download your backup or can save it on your server.
  • Cloud Backups : Store it in cloud storage or remote locations like Google Drive, Amazon S3, DropBox and others.
  • One-Click Restore : File restoring made easy with just One-Click Restore.

Advanced Features :-

  • Advanced Blocking – Block users based on: IP range, Country, Browser / User Agent, Referer and HostName(DNS)
  • Htaccess Website Security Protection- Secure your website from unintended user with htaccess website security protection which blocks user request on server(apache) level.
  • IP Lookup ( WHOIS ) — With IP Lookup you can trace IP address of an suspicious users, you can get an idea what part of the country or world they are accessing your website from.
  • Security Log – Logs Blocked IPs, Spammers, Bots, HTTP 404,403 and 400 logging
  • Comment SPAM Filter and Site SPAM Check — We check if your website is generating SPAM to protect your website getting blocked by search engines. Also we help you to filter comments for malware and phishing urls.
  • SPAM Protection and google reCAPTCHA for comments — Google reCAPTCHA protects your website from spam and abuse. reCAPTCHA uses an advanced risk analysis engine and adaptive CAPTCHAs to keep automated software from engaging in abusive activities on your site.
  • Notification to admin and end users – Send Email Alerts for IP blocking and unusual activities with user account
  • DOS (Denial of service) attacks protection – Protect your resources from DOS attacks by slowing down attackers by delaying response and increasing delay in each of his requests and eventually blocking them entirely.
  • Country Blocking — If you have a website which gets inundated with SPAM or hacking attempts from visitors or bots originating from certain countries we can help you blocking those attempts.
  • Notifications — Get email alerts for unusual activities with you user accounts. We also support customized email templates which you can use for branding.

Скриншоты

  • Dashboard
  • Login Protection
  • Content and Spam Protection
  • Login Security
  • Advanced Blocking
  • Reports
  • Brute Force Protection
  • IP Blocking

Установка

From your WordPress dashboard

  1. Visit Plugins > Add New
  2. Search for Limit Login Attempts. Find and install the plugin.
  3. Activate the plugin from your Plugins page

From WordPress.org

  1. Download Limit Login Attempts plugin.
  2. Unzip and upload the miniorange-limit-login-attempts directory to your /wp-content/plugins/ directory.
  3. Activate plugin from your wordpress dashboard.

Once Activated

  1. Go to Settings-> Limit Login Attempts, and follow the instructions.
  2. Click on Save

Часто задаваемые вопросы

How is miniOrange Different?

miniOrange has various types of deployments that gives the customer a safe and protective choice. miniOrange offers plugin, Cloud and On-premise server module. The plugin will block all incoming requests on the network where the website is hosted. You can block the request before reaching the server with the network solutions. Adding to this miniOrange also provides Login Protection and 2FA built specifically for CMS such as WordPress, Drupal, and others. And keeping backups are essential so that you can fall back in case of any loss or modification of data intentionally or unintentionally. miniOrange provides encrypted backups for file and database with one-click recovery.

miniOrange provides three levels of solutions to which owners can decide which solution would be the best for them

  • WordPress-Level Web Application Firewall
  • Server Level On-premise WAF
  • Server Level Cloud-based WAF

Do you want support?

Please email us at info@xecurify.com or Contact us

Отзывы

nice plugin

0wn3r1989 15.01.2019
very good plugin, keep it up and update thanks

Works perfectly for me

Robin 09.09.2018
Yes the plugin asks for it to be registered. So, I registered. I got an email with a one time Passcode. I entered it - ready to go. I added some IP addressees to the blacklist. I renamed wp-login.php. Job done. It works. Not a single failed login-attempt since I installed the plugin.

Account required

kudlav 21.04.2018
Unable to use this plugin without registration. You should mention it in description. I have to give one star to this app, because that's not a fair play.

Awesome Support

danwolfe 02.02.2018
Really needed a feature added which it turns out the author was already working on, and gave me a copy of it. Works great! It now ties in with another plugin I made for clients, and redirects after the limit is reached.

The worst plugin and plugin maker ever seen

ashoknrao 27.10.2017
I couldn't rate it below 1.. Its deserves nothing greater than zero. Who the heck wants to login by creating an account to limit the logins? Does it make sense? Most of all once you create an account, its a dud, until you upgrade, the free version, so its called is a dead plugin with no work . My god, I'm so frustrated with this dumb plugin and dumbest plugin maker (only building plugin for pure, sheer profit) that, I created this account on wordpress.org to give a 0 Star rating if possible! DO NOT USE THIS PLUGIN. I'M A WEBSITE AGENCY OWNER AND I RECOMMEND NOT TO USE IT!

Easy to set up and works like a charm

nitin01naik 19.04.2017
This plugin has what my site it needs to be protected from bots and login attacks. I was able to quickly and easily set it up. Would highly recommend it.
Посмотреть все 14 отзывов

Участники и разработчики

«Limit Login Attempts» — проект с открытым исходным кодом. В развитие плагина внесли свой вклад следующие участники:

Участники
  • miniOrange
  • miniorange

Перевести «Limit Login Attempts» на ваш язык.

Заинтересованы в разработке?

Посмотрите код, проверьте SVN репозиторий, или подпишитесь на журнал разработки по RSS.

Журнал изменений

4.0.0

  • Web Application Firewall: New Features Information Update.

3.2.0

Disable XML-RPC and option to change wordpress login URL’s

1.2.5

Added session timeout

1.2.4

Updated spam protection

1.2.3

Added option to clear reports

1.2.1

Enhanced brute force configuration options and time period for which IP should be blocked.

1.1.1

First version of plugin.

Мета

  • Версия: 4.0.0
  • Обновление: 1 неделя назад
  • Активных установок: 3 000+
  • Версия WordPress: 2.0.2 или выше
  • Совместим вплоть до: 5.6
  • Версия PHP: 5.3 или выше
  • Язык:
    English (US)
  • Метки:
    anti-spamlimit login attemptslogin securitymalware scannersecurity
  • Дополнительно

Оценки

Посмотреть все
  • 5 звёзд 10
  • 4 звезды 0
  • 3 звезды 0
  • 2 звезды 0
  • 1 звезда 4
Войдите, чтобы оставить отзыв.

Участники

  • miniOrange
  • miniorange

Поддержка

Решено проблем за последние 2 месяца:

0 из 1

Перейти в форум поддержки

Пожертвование

Would you like to support the advancement of this plugin?

Пожертвовать на развитие плагина

  • О WordPress
  • Блог
  • Хостинг
  • Пожертвовать
  • Поддержка
  • Разработчикам
  • Участвуйте
  • Учитесь
  • Витрина
  • Плагины
  • Темы
  • WordCamp
  • WordPress.TV
  • BuddyPress
  • bbPress
  • WordPress.com
  • Matt
  • Приватность
  • Public Code
  • @WordPress
  • WordPress

Код — это поэзия.