Wordpress Block

Avatar
  • Answered
I am well aware of the attack on Wordpress. I have gone through your instructions and I have added IP restrictions to my blogs, however even though I can get to the login page the first time, when I actually try to login, it blocks access with the "WordPress Login Temporarily Disabled" message.

I have a couple dozen Wordpress installations. It seems to me like your block is based on every access to "wp-login.php" under my account, regardless of if they are on different domains.

I also read through your other suggestions, but the problem is that I have lots of Worpdress installations and it's hard to be sure I have fixed every one.

Do you have alternatives or any better suggestions to deal with this?

Thanks.
Avatar
Arn
Hello Garretg, The problem that you're facing may possibly involve Wordpress plugins hitting the login page and causing the mod_security to activate. Please try disabling any Wordpress Login plugins first. The .htaccess changes that were provided are supposed to screen out the brute force attackers and then immediately allow access to the Wordpress login. For possible review (I'm not sure if you're using the same thing as before): Using HTACCESS to block unwanted users. If you have any further questions, please contact technical support available 24 hours a day / 7 days a week. Regards, Arnel C. Community Support