- Lists exactly who is visiting the site
- Which IP addresses are blocked
Main
Important: WP-Security "Force Logout" must be disabled
Limit Login attempts
- Attempts – Login attempts in minute
s in case of failed attempts can be set a time period - Aggressive lock
outWhen same IP tried again from failed lockout increase to 24h - Use Whitelist IPum t
o prevent yourself from locking yourself out - Block subne
tA hacker has a different IP address, the whole subnet is blocked - Non-existing
userImmediate lock on non-existent users - Disable dashboard redirection
wp-admin is no longer directly accessible - Request wp-login.p
hpIf you have renamed the login page using WP-Security, access to wp-login is no longer necessary – access is immediately blocked - Important – WP-Security -> Brute Force -> "Login Page URL" : disab
leAt "WP-Cerber" -> enter custom login URL - "Disable wp-login.php" – blocks direct access to wp-login
- Citadel mo
deIf in a short time, very many failed logins take place – the page will be for 1h. lockedOnl
y who is on the whitelist gets access