Failed Login Firewall reporting

March 03, 2022

Failed Login Firewall reporting Plugin

Report failed logins to centralized database and block IPs on firewall level!

Idea of this plugin is simple. On failed login attempt – report IP of visitor to centralized database.
If same IP fails a lot (no matter on which site) – it will be listed on blocklist.

CSF (Config Server Firewall) allows you to put URL which contains list of IPs, that should be blocked.
Set it to our address and your server will be protected from those, who abuse WordPress sites login forms.

Plugin is simple and I believe it can become an effecient tool fighting against hackers, as it would
stop bad guys at firewall level, not letting them do any harm.

Installation

  1. Upload the plugin files to the /wp-content/plugins/plugin-name directory, or install the plugin through the WordPress plugins screen directly.
  2. Activate the plugin through the ‘Plugins’ screen in WordPress

FAQ

What will be reported

Failed login and IP address of visitor.

How can I use your list on my firewall

Set firewall script, e.g. CSF to fetch list of abuser IPs from here http://wp-firewall.hosting.guru/deny.txt

What is deny policy

IP will be listed in deny list if it matches any of the following
* more than 20 failed login attempts since yesterday 00:00
* more than 100 failed login attempts within last 10 days
* more than 500 failed login attempts within last 30 days

Basically if some IP failed 500 times or more – it will be blocked for at least 30 days.

Changelog

0.32

  • Minor syntax fix

0.3

  • Compatability update

0.2

  • Ready to publish on wordpress.com

0.1

  • First version for testing on private sites.

Details

  • Version: 0.32
  • Active installations: 100
  • WordPress Version: 3.0.1
  • Tested up to: 5.9.10

Ratings


5 Stars
4 Stars
3 Stars
2 Stars
1 Stars