Home › Forums › BulletProof Security Pro › Login Security & Monitoring Help Info
Tagged: Login Monitor, Login Monitoring, Login Security
- This topic has 46 replies, 11 voices, and was last updated 8 years, 7 months ago by
SM.
-
AuthorPosts
-
AITpro Admin
KeymasterThat is normal at this point. There is no “login attempts remaining” text. We will most likely be adding that in a future version of BPS.
Webblogsforyou
ParticipantOK, thanks. Looking for the next update! 😉
Keep up the good work!AITpro Admin
KeymasterActually that is on the task list for a future version of BPS and may or may not be in the next version of BPS. That depends on priority order of tasks. Tasks move up and down the list in order of importance/priority.
Elisa
ParticipantIs it possible to change my login url using bps security? (from domainname.com/wp-admin to domainname.com/selfchosen for example) Or is there a plugin you could advise for that?
AITpro Admin
KeymasterBPS does not try to hide anything since hiding things is not real security and never will be. Do google searches for “hiding X, hide WordPress, etc”, but remember hiding things is not real security.
Todd
ParticipantIt’s not clear if Elisa is attempting to change the login for purposes of hiding the login or just because she wants to redirect her users to a fancier login page.
Apart from the fact that hiding things isn’t typically considered sound security advice, there are things that you can do to help prevent attacks on wp-login, like preventing access to Server Protocol HTTP/1.0. We have a write-up (which you and I have discussed previously) that makes a custom page for user logins. Although bots usually POST to the wp-login page what we describe prevents any GET access to that page and only allows POST. The combination of the two actions mentioned above keeps our fake, brute force and attempted logins to a very, very low amount (less than 5 attempts a month on a 20k per month visitor count). Granted, we have also integrated this entire process with F2B to block the bots at the firewall level.
If Elisa would like to take on a project to create a custom login page I would suggest reading our article on WireFlare: https://wireflare.com/wordpress-login-security-custom-login-page/.
AITpro Admin
KeymasterJTC Anti-Spam|Anti-Hacker was created in BPS Pro, which is 100% effective at stopping 100% of all automated Login hacking and spamming attacks.
David
Participant[Topic has been merged into this relevant Topic]
Hi all,I’m pretty new to BulletProof Security and hope this is not a stupid question and apologies if someone has already answered this question. I’ve failed at trying to find the thread.
I’m having BPS Pro Login Security Alert emails roughly every 30 minutes with attempts to log into one of my website user accounts. Because this is not just a single attempt and ongoing is there something simple I can do to try and prevent the ongoing attempts?
It would appear like the culprit User Host name is also ever changing.
Regards,
Dave
AITpro Admin
KeymasterYou cannot stop someone from trying, but you can stop someone from being successful. 😉 Is your user account being locked? Do you not want to receive Login Security email alerts? Click on the Read Me help button in Login Security to see if the help info answers your question. If you still have questions after reading the Read Me help text then let me know if your user account is being locked.
Living Miracles
ParticipantHi,
I received an email earlier because “A User Account Has Been Locked”. This is regarding a secondary user account; not the Super Admin, so I’m still able to log in. A colleague in Mexico is trying to access the site via a secondary admin account.
The direction in the email is “To take further action go to the BPS Pro Login Security page.” I was expecting to see the locked out user on the Login Security page in BPS Pro, however I do not see it there. I thought that if I saw the user locked out there, I could simple unlock it, but I cannot.
The message that my colleague is seeing, is: “ERROR: The password you entered for the username xxxxxxxxxx is incorrect.”
It’s not incorrect though; and I and another colleague of mine can successfully log in to the site using the same username, password, captcha combination my colleague in Mexico is using.
AITpro Admin
KeymasterWhen a User Account displays Locked Status you can unlock it. Let’s say a User Account was Locked for 10 minutes and the Lockout time has expired. When the User logs in the Locked Status is cleared because obviously the User Account is no longer in Locked Status. If someone else can login to a user account using the same password and another person cannot login with that same password then that means one of these problems is happening: the user is not entering the correct password, the user has something installed in the Browser that is breaking the login text field or fields (add-on, extension or other 3rd party applications) or there is something installed on the Users computer that is breaking the login text fields. That also applies to any Login form text fields: username or other form text fields.
Living Miracles
ParticipantAh!! It was a slight oversight on my part. Everything has been resolved. There’s no issue with BSP Pro whatsoever 🙂
SM
ParticipantHi there,
I’m not a technie. I was told that I must track IP addresses of those who login to my site in case it gets hacked, seems that is built-in to BPS, yes?
Thank you!
AITpro Admin
Keymaster@ SM – You can log all IP addresses of people who login to your website using the Login Security > Logging Options > Log All Account Logins. Logging IP addresses would not help you much in tracking a hacker or spammer because hackers and spammers don’t use trackable IP addresses intentionally.
Anyway the most common attack method is to use other hacked websites and servers as the delivery system. They are called “victim sites”. ie a hacker controls multiple victim websites that they previously hacked and use those victim sites to attempt to hack other websites. So the IP address will point/lead to the victim site and not the hacker.
SM
ParticipantThank you, Admin. So is that a yes, BPS does track IP addresses and I don’t have to do anything manually in advance? I understand that if I am looking for a specific IP address I will need to check a log, but my question is whether the automatic logging is the default or I have to do activate something special in BPS?
Also, I noticed logging into this forum I had to enter a captcha or similar, but that’s not part of BPS yes? Is there a WP plugin for captcha at login that you recommend? Or I did receive a note on the BPS page about a Brute Force Login Protection Code ( and other codes I am not sure what to do with) is that the same thing as the captcha? I’m a little scared about messing with any code when I don’t know what I am doing…although I can cut and paste into CSS.
Thanks!
-
AuthorPosts
- You must be logged in to reply to this topic.