Community Q&A:
How can I keep from getting locked out of my Wordpress during brute force attacks?
I've pasted the code prescribed here: http://www.webhostinghub.com/support/news/general/wp-login-brute-force-attack into my htaccess file with my IP address and am still getting almost-daily attacks where I'm then locked out of my Wordpress dashboard. The code is supposed to allow logins from my IP address only, right? Why am I still getting locked out? How can I keep this from occurring in the future?
ANSWERS
|
0
|
Hello Barbara, Thanks for the question and sorry for the lockout issues. Fortunately, I was able to find your account and take a look at your .htaccess code. You did not put in the code correctly, which is why the .htaccess rule to lock down access was not working properly. Specifically, you were having problems with this one line: RewriteCond %{REMOTE_ADDR} !^123\.123\.123\.123$ You needed to included the backward slashes (\) in front of the periods separating the numbers of the IP address. Since I was looking at your file already, I went ahead added them to your file. You need to give it another 15-30 minutes then the rule should start working - make sure that you're not trying to access it until that period of time has passed, or you may inadvertently add more time to the lockdown of your Wordpress admin login screen. I made the change at approximately 7:55 PM EST. I hope that helps to clarify the issue for you! Please let us know if you require any further assistance. Kindest regards, Arnel C. |
Want to share this Question?
Tweet
Help Center Login
Related Articles
It looks like there are no related articles.
Would you like to ask a question about this page? If so, click the button below!
