Brute Force Attack: Login Work-Around Failing. Due to WP?

  • My hosting company, Westhost, currently blocks access to /wp-admin/ and wp-login.php when a site is the target of a brute force attack. Access is returned when the attack subsides. Meanwhile, I have unhappy clients who can’t login to their websites.

    Previous work-around, to create an alternate login file by saving wp-login.php with a new filename and using that to login, no longer works. Westhost is suggesting that a recent WP update must include something that redirects an alternate login to wp-login.php, triggering the block. Is this the case? And/or what is another way to create a work-around to allow access to admin?

Viewing 1 replies (of 1 total)

  • My hosting company, Westhost, currently blocks access to /wp-admin/ and wp-login.php when a site is the target of a brute force attack.

    Wow. That’s like using a hammer to fix a mirror. All they are doing is giving the brute force attack just what they want – to bring the site down.

Viewing 1 replies (of 1 total)
  • The topic ‘Brute Force Attack: Login Work-Around Failing. Due to WP?’ is closed to new replies.