Securing your WordPress site from hackers is extremely important to protect your website. One of the most common ways hackers gain access to WordPress is through brute force password cracking. Hackers use special tools to try multiple usernames and passwords to gain access to your WordPress dashboard. The easiest way to stop a hacker attempting to guess your username and password is to use a plugin that limits the number of login attempts.
In addition to using the “Limit Login Attempts” plugin we recommend changing your administrator username to something other than “Admin”. For more information on how to do this, please read our article on using a WordPress username other than admin for security reasons.
For instructions using the latest version of Loginizer, please see our new guide by clicking here.
Steps to installing the plugin:
- Log into your WordPress Dashboard
- Go to Plugins in the left side menu pane
- At the top of the screen click “Add New”
- In the search bar type “limit login attempts”
- The first results displayed should read “Limit Login Attempts”. Click “Install Now”
- Click “Activate Plugin”
Configuring the plugin
- Go to Settings > Limit Login Attempts in the WordPress Dashboard
- Choose the settings you wish to use. In our example we’ve changed the default settings
- Click “Change Options”
You’re now finished configuring the WordPress “Limit login Attempts” plugin. When someone reaches the limit you have set for failed login attempts they will see a message similar to the one below: