Plugins DatabasePlugins Database logo
Back to plugins
Homepage WordPress

Actions

DownloadAuthor pageSee on WordPress

Plugin info

Total downloads: 3,020
Active installs: 10
Total reviews: 0
Average rating: 0
Support threads opened: 0
Support threads resolved: 0 (0%)
Available in: 1 language(s)
Contributors: 3
Last updated: 12/18/2014 (4029 days ago)
Added to WordPress: 12/18/2014 (11 years old)
Minimum WordPress version: 2.6
Tested up to WordPress version: 4.1.42
Minimum PHP version: f

Maintenance & Compatibility

Maintenance score

Possibly abandoned • Last updated 4029 days ago

20/100

Is Orbisius Limit Logins abandoned?

Possibly abandoned (last update 4029 days ago).

Compatibility

Requires WordPress: 2.6
Tested up to: 4.1.42
Requires PHP: f

Ratings

0
0
0
0
0See all reviews

Developers

Svetoslav Marinov (Owner)36orbisius25Svetoslav Marinov3

Languages

Similar & Alternatives

Explore plugins with similar tags, and compare key metrics like downloads, ratings, updates, support, and WP/PHP compatibility.

Orbisius Messenger
Rating 0.0/5 (0 reviews)Active installs 0
Compare
Melapress Login Security
Rating 5.0/5 (16 reviews)Active installs 2,000
Compare
See more alternatives to Orbisius Limit Logins

Description

This plugin logs and blocks IP address of users who try to login with known bad usernames such as admin, adm etc.
The plugin intentionally hooks very early (plugins_loaded hook) in order to determine if the user should be blocked or not because that way WordPress doesn’t have to waste resources if the user is supposed to be blocked.
It stores the IP address in the uploads folder (.htaccess protected) so it doesn’t hit the database for the ip checks. This may not work on some setups.

The user will get blocked in these cases:
– Tries to login using one of the bad usernames (admin, adm, root, administrator)
– Tries 7 or more ties to guess any password of any user

Note: If you still have an account whose username matches the logins mentioned above please create a new admin account and use that one instead
.. or you will get banned when you attempt to login regardless if your password was valid or not.

When the user should be blocked the plugin outputs Internal Server Error message and stop. That way the attacked doesn’t know what’s happening.
Also the user is has to wait between 3 and 15 seconds before seeing this error message to slow him/her down.

Features / Benefits

  • Hooks very early and checks if the user is blocked -> blocks to saves resources
  • Doesn’t block server’s ip or localhost / 127.0.0.1
  • The plugin should be capable of detecting multiple IP address of a visitor (some proxies pass the original IP address via different request variable)
  • If an IP is blocked that user is not allowed to access the whole site not just the login page.
  • Extensible via hooks (filters, actions).

Demo

TODO

Bugs? Suggestions? If you want a faster response contact us through our website’s contact form [ orbisius.com ] and not through the support tab of this plugin or WordPress forums.
We don’t get notified when such requests get posted in the forums.

Support is handled on our site: http://club.orbisius.com/forums/
Please do NOT use the WordPress forums or other places to seek support.

Author

Svetoslav Marinov (Slavi) | Custom Web and Mobile Programming by Orbisius.com

Installation

  1. Unzip the package, and upload orbisius-limit-logins to the /wp-content/plugins/ directory
  2. Activate the plugin through the ‘Plugins’ menu in WordPress

Frequently Asked Questions

How to use this plugin?

Just install the plugin and activate it. It will start protecting right away.

How do I unblock myself ?

Login with FTP and navigate to wp-content/uploads/.ht_orbisius_simple_block/ and then look for blk-YOUR-ip.txt and blk-YOUR-ip.txt.cnt.txt

Review feed

No reviews available

Screenshots

  1. Settings Page

    Settings Page

Changelog

1.0.0

  • Initial release
Back to plugins