Plugin to separate username and password fields to separate login steps?

  • Hiya,

    I notice on many of the websites I use, especially financial websites, they seem to separate the username and password fields into two different steps/pages during the login process. For example, if you click login, they will first ask for just your username, and then if you enter a valid one, a second step loads requesting just your password. I’m assuming this is a tactic to harden against brute force attacks because they can just keep trying everything at once.

    I’m wondering if there’s a plugin for WordPress that does this? I’ve searched the evermore useless Googles and only can find information about 2 Factor Authentication, which I’m already using.

    Thanks!

Viewing 2 replies - 1 through 2 (of 2 total)
  • Moderator bcworkz

    (@bcworkz)

    TBH I think the input separation is just “security theater”. If you are already using 2FA, IMO you will not gain better security by separating the inputs. If your concern is about brute force attacks, use one of the many plugins that limit login attempts before locking a user out for some period of time.

    If anyone can offer a rational, logical reason why input separation enhances security, I’ll reconsider my opinion of it.

    Thread Starter KingDingbat

    (@kingdingbat)

    Thanks for your input bcworkz! I also suspected the same, but I’m always looking for ways to strengthen security – my business is a Travel Agency which deals with a great deal of personal information so I want to protect it the best I can. I do already have 2FA on, and login limiters, and a firewall, and more… so I’m probably fine… but thought I’d ask.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Plugin to separate username and password fields to separate login steps?’ is closed to new replies.

Tags