Book a Demo!
CoCalc Logo Icon
StoreFeaturesDocsShareSupportNewsAboutPoliciesSign UpSign In
wpscanteam
GitHub Repository: wpscanteam/wpscan
 Path: blob/master/spec/fixtures/finders/plugin_version/readme/no_version.txt
486 views
1
=== Simple Login Lockdown ===

2
Contributors: chrisguitarguy

3
Donate link: http://www.pwsausa.org/

4
Tags: security, login

5
Requires at least: 3.2.0

6
Tested up to: 3.3

7
Stable tag: trunk

8


9
Simple Login Lockdown prevents brute force login attacks/attempts on your WordPress installation.

10


11
== Description ==

12


13
Simple login lock down is a way to protect your WordPress blog from brute force login attacks.

14


15
How it works:

16
1. An attacker attempts to login and fails

17
2. Simple Login Lockdown record that failed login

18
3. After a certain number of failed attemps (defaults to five), further attemps to access the wp-login.php page are blocked for a time (defaults to one hour).

19


20
If you happen to forget your password and make a failed login attemp yourself, the plugin will clear out the lockdown count data on successful login.

21


22
Note: This uses $_SERVER['REMOTE_ADDR'] directly.  If you're behind a proxy (load balancer, etc), it's not going to work as expected.  Eg. Several folks could be attempting logins at once, and all fail.  As such, the plugin would pick up on all those requests coming from the same IP -- the load balancer -- and lock the login down.  No good.  If you're using a load balancer or in some other situation where you're behind a proxy, use this as an example and write your own. Or filter the IP as your desire using `cd_sll_pre_ip`.

23


24
== Installation ==

25


26
Install via the WordPress admin or...

27


28
1. Click on the big orange button that says download

29
2. Unzip the file, and upload the `simple-login-lockdown` folder to your wp-content/plugins directory

30
3. Login into your website and activate the plugin!

31


32
== Frequently Asked Questions ==

33


34
== test ==

35
1.2

36
==

37


38
== test ==

39
1.3

40
bb =

41


42
= I got locked out, what do I do? =

43


44
Simple answer: wait.  The lockdown will clear in the time you specified, just visit the site again later.

45


46
If you absolutely need to get into your site right now, you can can do one of two things...

47
1. Fire up your FTP client and rename the `simple-login-lockdown` plugin folder

48
2. Login into your favorite database administration tool (probably PHPMyAdmin) and search for `locked_down_` in the `option_name` column of the `wp_options` table.  Delete the records you find -- they should be "transients".

49


50
== Screenshots ==

51


52
1. The plugin options on the Privacy Settings page

53


54