Sari la conținut
  • Autentificare
  • Înregistrare
WordPress.org

În Română

  • Teme
  • Module
  • Știri
  • Suport
  • Despre
  • Evenimente
  • Localizare
  • Dialog
  • Obține WordPress
Obține WordPress

Module

  • Favoritele mele
  • Testare beta
  • Dezvoltatori
Descarcă

Limit Login Attempts Reloaded

De Limit Login Attempts Reloaded
  • Detalii
  • Recenzii
  • Dezvoltare
Suport

Descriere

Limit Login Attempts Reloaded stops brute force attacks and optimizes your site performance by limiting the number of login attempts that are possible through the normal login as well as XMLRPC, Woocommerce and custom login pages. This is the only plugin you’ll need for your login security needs with over 2 million downloads worldwide.

This plugin will block an Internet address (IP) and/or username from making further attempts after a specified limit on retries has been reached, making a brute force attack difficult or impossible.

WordPress by default allows unlimited login attempts. This can lead to passwords being easily cracked via brute force.

Limit Login Attempts Reloaded

Limit Login Attempts Reloaded Premium Cloud App
Enables cloud protection for Limit Login Attempts Reloaded plugin and enhances your login security. It comes with all the great features you’ll need to stop hackers and bots from brute force attacks. The cloud app offers several features including advanced protection out of the box, and the ability for site admins and agencies to sync safelists/blocklists across multiple domains. Click here to activate the cloud app for the best WordPress security plugin now!

Funcționalități:

  • Limit the number of retry attempts when logging in (per each IP).
  • Configurable lockout timings.
  • Informează utilizatorul despre încercările rămase sau timpul de blocare pe pagina de autentificare.
  • Email notification of blocked attempts.
  • Logging of blocked attempts.
  • Safelist/Blocklist of IPs and Usernames (Support IP ranges).
  • Sucuri compatibility.
  • Wordfence compatibility.
  • Protecție gateway XMLRPC.
  • Protecție pagină de autentificare Woocommerce.
  • Compatibilitate cu multi-site cu setări MU suplimentare.
  • GDPR compliant.
  • Custom IP origins support (Cloudflare, Sucuri, etc.)

Features (Premium Cloud App):

  • Performance Optimizer – Brute force attacks absorbed in the cloud (Up to 100k requests monthly).
  • Throttling – Longer lockout intervals each time a hacker/bot tries to login unsuccessfully.
  • Auto Backups of All Data
  • Intelligent IP Blocking/Unblocking – Make sure the legitimate IP’s are allowed automatically.
  • Synchronized Lockouts – Lockouts can be shared between multiple domains.
  • Synchronized Safelist/Blocklist – Safelist/Blocklist can be shared between multiple domains.
  • Premium Support – Get answers within 24 hours in our support forum.
  • Enhanced lockout logs – A log of lockouts with extra features.
  • CSV Download of IP Data
  • Supports IPV6 Ranges For Safelist/Blocklist
  • Unlock The Locked Admin – Easily unlock the locked admin through the cloud.

Actualizezi de la vechiul modul Limit Login Attempts?

  1. Mergi în secțiunea Module din partea administrativă a site-ului tău.
  2. Înlătură modulul Limit Login Attempts.
  3. Instalează modulul Limit Login Attempts Reloaded.

Toate setările tale vor fi păstrate intacte!

Many languages are currently supported in the Limit Login Attempts Reloaded plugin but we welcome any additional ones.

Help us bring Limit Login Attempts Reloaded to even more countries.

Traduceri: bulgară, portugheză (Brazilia), catalană, chineză (tradițională), cehă, olandeză, finlandeză, franceză, germană, maghiară, norvegiană, persană, română, rusă, spaniolă, suedeză, turcă

Modulul folosește doar acțiuni și filtre standard.

Bazat pe codul original din modulul Limit Login Attempts de Johan Eenfeldt.

Branding Guidelines

Limit Login Attempts Reloaded™ is a trademark of Atlantic Silicon Inc. When writing about the plugin, please make sure to use Reloaded after Limit Login Attempts. Limit Login Attempts is the old plugin.
* Limit Login Attempts Reloaded (correct)
* Limit Login Attempts (incorrect)

Capturi ecran

  • Ecranul de autentificare după o autentificare eșuată, cu numărul de încercări rămase
  • Blochează ecranul de autentificare
  • Interfață de administrare în WordPress 5.2.1

Întrebări frecvente

What do I do if all users get blocked?

If you are using contemporary hosting, it’s likely your site uses a proxy domain service like CloudFlare, Sucuri, Nginx, etc. They replace your user’s IP address with their own. If the server where your site runs is not configured properly (this happens a lot) all users will get the same IP address. This also applies to bots and hackers. Therefore, locking one user will lead to locking everybody else out. If the plugin is not using our Cloud App, this can be adjusted using the Trusted IP Origin setting. The cloud service intelligently recognizes the non-standard IP origins and handles them correctly, even if your hosting provider does not.

What settings should I use In the plugin?

The settings are explained within the plugin in great detail. If you are unsure, use the default settings as they are the recommended ones.

Can I share the safelist/blocklist throughout all of my sites?

By default, you will need to copy and paste the lists to each site manually. For the premium service, sites are grouped within the same private cloud account. Each site within that group can be configured if it shares its lockouts and access lists with other group members. The setting is located in the plugin’s interface. The default options are recommended.

Where can I find answers to my Cloud App related questions?

Please follow this link: https://www.limitloginattempts.com/resources/

Verificări

Does a good job

hyehudi 5 februarie 2023
And, importantly, without causing issues for admin. Keep it up!

Quietly does its job

Umdloti 21 ianuarie 2023 1 răspuns
It is not intrusive at all and quietly gets on with protecting your site. The WP dashboard has a simple interface showing number of failed login attempts.

work well

x24help 20 ianuarie 2023 1 răspuns
How can i detect, when someone can login its not me?Maybe the function to send an email when login occurs good idea. Yes i can not easy to detect, so send an email when i logged in to.

Good plugin

andrewcc1961 19 ianuarie 2023
Have been using this plugin for some time and is peace of mind to know that our site is much less likely to be hacked.

Works well!!

michvhf 18 ianuarie 2023
It's notified me on several occasions. Got me to find and fix a few misconfigurations.

I like seeing zero attempts on the graph

colorslides 17 ianuarie 2023
I like seeing zero attempts on the graph when I log into my websites. My sites get hammered by a joint attack by idiotic hackers online, trying to log in. I need to install this on every website I have created.
Citește toate cele 1.071 de recenzii

Contributori și dezvoltatori

„Limit Login Attempts Reloaded” este un software open-source. La acest modul au contribuit următoarele persoane.

Contributori
  • WPChef

„Limit Login Attempts Reloaded” a fost tradus în 32 de locale. Mulțumim traducătorilor pentru contribuția lor.

Tradu „Limit Login Attempts Reloaded” în limba ta.

Te interesează dezvoltarea?

Răsfoiește codul, vezi depozitarul SVN, sau abonează-te la jurnalul de dezvoltare prin RSS.

Istoric modificări

2.25.12

  • Fixed IPv4 validation when passed with a port number.
  • Logs loading issue fixed.

2.25.11

  • PHP 8 compatibility fixed.
  • Logs loading issue fixed.
  • Help and Extensions tabs added.
  • Notification about auto updates added.
  • Displaying of plugin version added.
  • Text changes made.

2.25.10

  • Tested with PHP 8.
  • Small styles refactoring.
  • Fixed a rare issue with events log not being displayed correctly.
  • Chart library updated.

2.25.9

  • Welcome page replaced with a modal.

2.25.8

  • Email text, links updated.

2.25.7

  • Country flags added to log.
  • Refresh button added to log.
  • Email text updated.

2.25.6

  • Email links updated.

2.25.5

  • Fixed Woocommerce integration.
  • Updated some interface links.

2.25.4

  • Fixed session error in rare cases.
  • Access rules explained.
  • Improved session behavior on the login page.
  • Fixed warning on some GoDaddy installations.

2.25.3

  • Improved compatibility with WordFence.
  • Better handling of HTTP_X_FORWARDED_FOR on Debug tab.
  • Added option to hide warning badge.

2.25.2

  • Security indicator fixed for multisite.

2.25.1

  • Added setting to turn the dashboard widged off.
  • The widget is visible to admins only.

2.25.0

  • Dashboard widged added.
  • Security indicator added.

2.24.1

  • Fixed E_ERROR occurring in rare cases when the log table is corrupted.

2.24.0

  • Protection increased: bots can’t parse lockout messages anymore.

2.23.2

  • Cloud: better unlock UX.
  • Litle cleanup.

2.23.1

  • Added infinite scroll for cloud logs.

2.23.0

  • Reduced plugin size by removing obsolete translations.
  • Cleaned up the dashboard.
  • Cloud: added information about auto/manually-blocked IPs.
  • GDPR: added an option to insert a link to a Privacy Policy page via a shortcode, clarified GDPR compliance.

2.22.1

  • IP added to the email subject.

2.22.0

  • Added support of CIDR notation for specifying IP ranges.
  • Texts updated.
  • Refactoring.

2.21.1

  • Fixed: Uncaught Error: Call to a member function stats()
  • Cloud API: added block by country.
  • Refactoring.

2.21.0

  • GDPR compliance: IPs obfuscation replaced with a customizable consent message on the login page.
  • Cloud API: fixed removing of blocked IPs from the access lists under certain conditions.
  • Cloud API: domain for Setup Code is taken from the WordPress settings now.

2.20.6

  • Multisite tab links fixed.

2.20.5

  • Option to show and hide the top-level menu item.

2.20.4

  • Sucuri compatibility verified.
  • Wordfence compatibility verified.
  • Better menu navigation.
  • Timezones fixed for the global chart.

2.20.3

  • More clear wording.
  • Cloud API: fixed double submit in the settings form.
  • Better displaying of stats.

2.20.2

  • Updated email text.

2.20.1

  • New dashboard more clear stats.

2.20.0

  • New dashboard with simple stats.

2.19.2

  • Texts and links updated.

2.19.1

  • Welcome page.
  • Image and text updates.

2.19.0

  • Refactoring.
  • Feedback message location fixed.
  • Text changes.

2.18.0

  • Cloud API: usage chart added.
  • Text changes.

2.17.4

  • Missing jQuery images added.
  • PHP 5 compatibility fixed.
  • Custom App setup link replaced with setup code.

2.17.3

  • Plugin pages message.

2.17.2

  • Lockout notification refactored.

2.17.1

  • CSS cache issue fixed.
  • Notification text updated.

2.17.0

  • Refactoring.
  • Email text and notification updated.
  • New links in the list of plugins.

2.16.0

  • Custom Apps functionality implemented. More details: https://limitloginattempts.com/app/

2.15.2

  • Alternative method of closing the feedback message.

2.15.1

  • Refactoring.

2.15.0

  • Reset password feature has been removed as unwanted.
  • Small refactoring.

2.14.0

  • BuddyPress login error compatibility implemented.
  • UltimateMember compatibility implemented.
  • A PHP warning fixed.

2.13.0

  • Fixed incompatibility with PHP < 5.6.
  • Settings page layout refactored.

2.12.3

  • The feedback message is shown for admins only now, and it can also be closed even if the site has issues with AJAX.

2.12.2

  • Fixed the feedback message not being shown, again.

2.12.1

  • Fixed the feedback message not being shown.

2.12.0

  • Small refactoring.
  • get_message() – fixed error notices.
  • This is the first time we are asking you for a feedback.

2.11.0

  • Blacklisted usernames can’t be registered anymore.

2.10.1

  • Fixed: GDPR compliance option could not be selected on the multisite installations.

2.10.0

  • Debug information has been added for better support.

2.9.0

  • Trusted IP origins option has been added.

2.8.1

  • Extra lockout options are back.

2.8.0

  • The plugin doesn’t trust any IP addresses other than _SERVER[„REMOTE_ADDR”] anymore. Trusting other IP origins make protection useless b/c they can be easily faked. This new version provides a way of secure IP unlocking for those sites that use a reverse proxy coupled with misconfigurated servers that populate _SERVER[„REMOTE_ADDR”] with wrong IPs which leads to mass blocking of users.

2.7.4

  • The lockout alerts can be sent to a configurable email address now.

2.7.3

  • Settings page is moved back to „Settings”.

2.7.2

  • Settings are moved to a separate page.
  • Fixed: login error message. https://wordpress.org/support/topic/how-to-change-login-error-message/

2.7.1

  • A security issue inherited from the ancestor plugin Limit Login Attempts has been fixed.

2.7.0

  • A implementat respectarea GDPR.

  • Fixed: ip_in_range() loop $ip overrides itself causing invalid results.
    https://wordpress.org/support/topic/ip_in_range-loop-ip-overrides-itself-causing-invalid-results/

  • Corecție: modulul bloca aceeași adresă IP de mai multe ori, fiecare cu un port diferit.
    https://wordpress.org/support/topic/same-ip-different-port/

2.6.3

  • A adăugat suport pentru Sucuri Website Firewall.

2.6.2

  • A corectat problema cu barele oblice inverse în numele de utilizator.

2.6.1

  • Modulul returnează antetul 403 Acces nepermis după ce limita de încercări de autentificare prin XMLRPC a fost atinsă.

  • A adăugat suport pentru intervalele de IP-uri în lista albă/neagră.

  • Blocările pot fi acum eliberate selectiv.

  • A corectat problema cu codificarea simbolurilor speciale în notificările prin email.

2.5.0

  • Added Multi-site Compatibility and additional MU settings. https://wordpress.org/support/topic/multisite-compatibility-47/

2.4.0

  • Usernames and IP addresses can be white-listed and black-listed now. https://wordpress.org/support/topic/banning-specific-usernames/ https://wordpress.org/support/topic/good-831/
  • The lockouts log has been inversed. https://wordpress.org/support/topic/inverse-log/

2.3.0

  • IP addresses can be white-listed now. https://wordpress.org/support/topic/legal-user/
  • A „Gateway” column is added to the lockouts log. It shows what endpoint an attacker was blocked from. https://wordpress.org/support/topic/xmlrpc-7/
  • The „Undefined index: client_type” error is fixed. https://wordpress.org/support/topic/php-notice-when-updating-settings-page/

2.2.0

  • Removed the „Handle cookie login” setting as they are now obsolete.
  • Added bruteforce protection against Woocommerce login page attacks. https://wordpress.org/support/topic/how-to-integrate-with-woocommerce-2/
  • Added bruteforce protection against XMLRPC attacks. https://wordpress.org/support/topic/xmlrpc-7/

2.1.0

  • The site connection settings are now applied automatically and therefore have been removed from the admin interface.
  • Now compatible with PHP 5.2 to support some older WP installations.

2.0.0

  • fixed PHP Warning: Illegal offset type in isset or empty https://wordpress.org/support/topic/limit-login-attempts-generating-php-errors
  • a corectat problema funcțiilor învechite
    https://wordpress.org/support/topic/using-deprecated-function
  • A corectat eroarea cu argumentele funcției: https://wordpress.org/support/topic/warning-missing-argument-2-5
  • a adăugat datare la încercările nereușite în pagina de configurare a modulului.
  • a corectat problema fișierelor de traducere .po.
  • Refactorizarea și optimizarea codului.

Meta

  • Versiune: 2.25.12
  • Ultima actualizare: Acum o zi
  • Instalări active: Peste 2 milioane
  • Versiune WordPress: 3.0 sau mai recentă
  • Testat până la: 6.1.1
  • Limbi:

    Asturian, Catalan, Chinese (China), Chinese (Taiwan), Czech, Danish, Dutch, Dutch (Belgium), English (Australia), English (Canada), English (New Zealand), English (South Africa), English (UK), English (US), French (Canada), French (France), Galician, German, Italian, Japanese, Norwegian (Bokmål), Persian, Portuguese (Brazil), Romanian, Russian, Spanish (Colombia), Spanish (Ecuador), Spanish (Mexico), Spanish (Spain), Spanish (Venezuela), Swedish, Turkish și Ukrainian.

    Tradu în limba ta

  • Etichete:
    Brute Forcefirewallloginprotectionsecurity
  • Vizualizare avansată

Evaluări

Vezi toate
  • 5 stele 1.020
  • 4 stele 16
  • 3 stele 5
  • 2 stele 8
  • 1 stea 21
Autentifică-te pentru a trimite un modul la verificare.

Contributori

  • WPChef

Suport

Probleme rezolvate în ultimele două luni:

16 din 22

Vezi forumul pentru suport

Donează

Vrei să sprijini dezvoltarea acestui modul?

Donează pentru acest modul

  • Despre
  • Știri
  • Găzduire
  • Donează
  • Cadouri
  • Documentație
  • Dezvoltatori
  • Implică-te
  • Învață
  • Prezentare
  • Module
  • Teme
  • Modele
  • WordCamp
  • WordPress.TV
  • BuddyPress
  • bbPress
  • WordPress.com
  • Matt
  • Confidențialitate
  • Public Code
WordPress.org
WordPress.org

În Română

  • Vizitează pagina noastră Facebook
  • Vizitează contul nostru Twitter
  • Vizitează-ne pe Instagram
  • Vizitează-ne pe LinkedIn
Codul este poezie.