No website, regardless of platform, is 100% safe. Many hackers are hard at work looking to find vulnerabilities within websites, and far too often they succeed.
One of the typical ways hackers “break into” websites is through brute-force. Unlike other forms of attacks that try and seek out vulnerabilities in software, brute-force attacks are relatively simple and aim to enter a website by trying usernames and passwords over and over again.
One very simple thing you can do to reduce and even eliminate your risk of falling prey to this form of attack is with the Limit Login Attempts Plugin.
This nifty little plugin allows you to set a limit on the number of login attempts from a single IP address as well as with auth cookies (cookie based authentication). Here are some of the main features of the Limit Login Attempts plugin:[list style=”check”]
- Set the number of attempts allowed
- Set the amount of time someone is locked out for
- Increase the lockout duration after a specified number of lockouts
- Get email notifications for every lockout
- Log the IP addressess and see what username was used to try and login
I highly recommend this plugin to WordPress users who are serious about keeping their website as safe as possible. This is NOT the be all, end all when it comes to website security. But it is a great tool you should have in your security toolbox. It’s easy to install/configure, it works and it’s free. In ten minutes you will have a much safer website.
Get Limit Login Plugin from WordPress Plugin Directory