Hello, do you intend to update your plugin shortly ? Thanks for your answer

Multiple times recently I have noticed this plugin is deactivating on its own. I’m sure there is another plugin or setting causing this issue, but I have no way to troubleshoot since it happens randomly. Is this common? What settings should I check? Any known plugin incompatibilities? Thank you

Hi~ Your plugin is great! But Google now seems not provide reCaptcha v2 anymore. I can’t find any way to make a new v2 keys. So are you going to make v3 available? Cloudflare Turnslite is also free to use.

Best regard

When I use a custom error message using a function, blocking doesn’t work. In the log there is an entry Your IP address is temporarily blocked, but access works.

Function (function.php):

function no_wordpress_errors(){
return 'Custom message';
}
add_filter( 'login_errors', 'no_wordpress_errors' );
remove_action('wp_head', 'wp_generator');

Hey there,

just installed your plugin and I’m wondering where I can find the Blocked Accounts and IPs?

Thnx
Semidark

Hey,

I just found and installed your Plugin to stop an ongoing brute force attack to a customer website. Everything seems nice, but the Captcha seams to get surmounted by the attacker without any problems.

I can’t imagine that there is a real person solving all those captchas, so I looked into the security of the reCaptcha V2. It seems it is not to hard for Attackers to automate the task of solving the captcha. Are there any plans to upgrade to reCaptcha V3?

Thnx
Semidark

• This topic was modified 1 year, 11 months ago by semidark.
• This topic was modified 1 year, 11 months ago by semidark.

Hi. You made great plugin, thank you so much for your work!
But plugin has layout issues under WP 4.9.22. There are normal records in WP database about login attempts, but they are invisible in “Activity Log” table on “guardgiant-login-activity-log” page. You can see a problem on this screenshot.
Compatibility of plugin is “3.3 or higher”, this is why I ask.
Thank you and appreciate your attention.

Hello,

I am not seeing any way to delete or reduce the size of the activity log. I am not wanting to have it grow enough that the log file is very large. At present, I have about 700 pages (about 7000 transactions). Is there a way of reducing the number / size of the file easily. I have done a quick look and do not see the log file in the plugin directory.

Please let me know how to delete the file. It would take a long time deleting 7000 entries at 10 per deletion. The historic entries have served their purpose after the lenghth of time goes by that you have set for blocking.

By the way, I really like your plugin, how it works and its effectiveness.

Thanks for your help on this.

Gary

Hi

Excellent plugin, but I have a question, my website is under attack, I would like to know what is happening because the IPs are not shown as indicated in the screenshot and I do not know exactly which IPs the plugin is stopping. Those who attack found a way to bypass that protection because there are too many attempts and I don’t have that information to be able to filter and block them from the hosting firewall.

IPs????

I can’t access my wp-admin.php for my site. This is because of a brute force attack underway. My service provider suggests that there may be a WordPress plugin for this. Is there any such plugin which can be installed during a brute force attack which will effectively disable that attack?
Thanks for your help.

Thanks for the plugin!

If there are 100 users accessing a website from one organization which has one public IP address and account lockout made due to false login attempt by one user, which is IP address based, every user account from that organization is blocked. How would the other users access the website?

And, why the plugin is storing evey failed login attempt? Don’t you think this is unnecessary. Only lockout or successful login event could be suffice.

Regards
Ankit

Hey there,

I’m using a WordPress Multisite install and noticed errors in my PHP/Nginx logs due to the databases not being created for subsites. The main site gets the correct databases:

wp_guardgiant_ip_failed_logins
wp_guardgiant_login_activity_log
wp_guardgiant_user_failed_logins

Subsites require those databases to be, for example: wp_2_guardgiant_ip_failed_logins, wp_3_guardgiant_ip_failed_logins

I simply copied the three databases and their structures so that the subsites work with the plugin and everything seems to be good now (haven’t tested extensively, however).

Just thought I’d let you guys know. And if there’s anything else I might need to do to keep compatibility, I’d be interested in knowing! Thanks.

Thanks for an excellent plugin! This might not be an error at all, but: In the activity log, the time given for an event is in my case exactly two hours off. It gives UTC. However, this does not seem to affect the timing when blocking IPs or users. This might, however, confuse the admins of the blogs. Is the use of UTC intended, and is there a way to “synchronize”, so that local time is given in the activity logs?

The Activity Log feature is both fascinating and worrying. I can see today from it that there have already been five attacks on my site. With this many attacks going on, should I block IP Addresses after a couple of attempts rather than the default?