Rating: 1 star

I just installed this plugin but found out that it has a backdoor script included in index.php. Dont get scammed!

Rating: 1 star

Lots of people complaining about this. How about fixing it?

Rating: 1 star

Keep having problems with this plugin. It happens often and now I decided to find another option. The concept sounded great but in reality its not very good. Sometimes it doesnt even show a picture of the captcha and then you cant login! Then you manually have to go to the ftp and delete the plugin to log in…

sometimes it says captcha-on-login/index.php deleted as the plugin does not exist!

Rating: 1 star

This is what I received from Dreamhost –

We have identified attacker-added malicious content, which may include
malware such as backdoor shells, adware, botnet, and spammer scripts.

The following file(s) specifically have been identified as attacker-added
malware. These files have been DISABLED by setting their permissions to 200
(Owner write-only). These files should be audited and either replaced with
known good versions or, if not legitimate site components, removed altogether:

/my_site_URL/plugins/captcha-on-login/templates/report.php
/my_site_URL/plugins/captcha-on-login/templates/options.php
/my_site_URL/plugins/captcha-on-login/index.php

I’ve deleted this plugin and will not be using it again.

Rating: 1 star

I think the developer did not event degug the plugin, Admin side was full of errors as i activated the plugin.

Rating: 5 stars

Great small plugin the help prevent brute force attack

Rating: 5 stars

Installed this on three websites today that were having a lot of unwanted login attempts, worked very well! Especially when you combine it with plugins preventing brute force attacks.

Easy to install. Just add the plugin, activate and you’re done.
What I also like is the fact the captcha is pretty easy to read.

Rating: 1 star

I had this on our website for just 3 days. Users sometimes could get on but often got an error message “unable to access database. Also, Backkup Buddy couldn’t transfer to its Stash storage. Deactivated this plugin and the problem went away.

Rating: 5 stars

My site was going through a brute force attack for over 24 hours.
I had done all the steps to protect my site and at this stage it had not been compremised. The hackers were using proxy IP addresses so I couldn’t easily established a fixed IP address to block. This type of hack is run by a program or script and is expecting a response from my server of incorrect username or password so it can continue.

By simply installing Captcha, that just simply worked straight from install, the brute force attack stopped. Presumably because the server response was not what the script was expecting.

Thanks and great plug-in!!

Rating: 5 stars

Authentic one-click installation, no settings needed.
Adding this plugin stopped 99% of brute force attack on two different WP installations. Much less job (and notifications) for security plugins.

Semplicemente funziona!
Autentica installazione in un click, nessun bisogno di settaggi.
Aggiungere questo plugin ha fermato il 99% dei tentativi di intrusione su due diverse installazioni di WP. Molto meno lavoro (e notifiche) per i plugin dedicati alla sicurezza.

Rating: 5 stars

This is really simple. Even I can use it without configuring.
It is also compatible with WP User Frontend’s frontend login page.

Rating: 1 star

This plugin used to be very good but suddenly it is not working on my 5 client websites. No point using it now of course as it prevents me logging into all WP (admin) sites that I have created. Will need to disable/delete via FTP.
Support from developer/s is non-existent!

Rating: 5 stars

Muito bom parabês para o ator que crio ele….

Rating: 5 stars

Funciona perfeitamente. Obrigado!

Rating: 5 stars

Very easy too implement, nice to see.
No conflicts with other captcha

Rating: 4 stars

I don’t understand why people gave it a low rating. I’m giving it 4 for only one reason, it doesn’t look like the author is addressing any issues in the support forum. Other than that, it works just fine.

Rating: 5 stars

This plugin does exactly what it says and has been effectively thwarting the ongoing brute force wp-login attacks.

Rating: 1 star

This plugin can not be used by developers who run their sites in debug mode: define('WP_DEBUG', true); in wp-config.php

The developers do not respond to support questions.

Rating: 1 star

I’m just trying this plugin for the first time as something different to the “1+1” captchas I’ve been using. However, I tried 6 times entering the exact captcha being shown in the image and it was rejected each time. In addition, the link was showing a link of “i.getsavinjs.info”. I had to FTP in to remove this plugin in order to log into my wordpress site.

Rating: 5 stars

I was being hit by the recent brute force attempts to login as admin. I have no user ‘admin’ but it was getting on my… well you know.

It’s only been 24 hours but I don’t as yet have a single failed login in that time. The first time in many weeks.

I will update this if (when) things change.

UPDATE (October 2013)

It’s now been 6 months with no brute force attempts so I decided to switch the captcha off. 30 minutes (and over 300 failed ‘admin’ login attempts later) I switched it back on.

‘admin’ has again stopped trying to login.

Still works beautifully.

Rating: 5 stars

Plugin is working perfectly