LexiConn Knowledgebase

Knowledgebase Home | Favorites Knowledgebase Home | Favorites
Search the Knowledgebase Browse by Category
WordPress Plugin - How To Configure Limit Login Attempts
Article Details

Last Updated
10th of March, 2014

User Opinions (1 vote)
100% thumbs up 0% thumbs down

How would you rate this answer?
Helpful
Not helpful
Limit Login Attempts

By default WordPress allows unlimited login attempts either through the login page or by sending special cookies. This allows passwords (or hashes) to be brute-force cracked with relative ease.

Limit Login Attempts blocks an Internet address from making further attempts after a specified limit on retries is reached, making a brute-force attack difficult or impossible.

Plugin homepage: https://wordpress.org/plugins/limit-login-attempts/

1.  From the WordPress dashboard, navigate to Plugins > Installed Plugins.



2.  Find “Limit Login Attempts” and click Activate.



3.  By default, the following standard settings apply:
   
    a.    Number of retries prior to short-duration lockout: 4
    b.    Short-duration lockout: 20 minutes
    c.    Number of lockouts prior to long duration lockout: 4
    d.    Long-duration lockout: 1 day

4.  These default options can be modified from Settings > Limit Login Attempts  


Related Articles
No related articles were found.
Attachments
No attachments were found.

Powered by Interspire Knowledge Manager Knowledgebase Software