IP blocking logins via all login methods

  • Resolved billb101

    (@billb101)


    7 years, 7 months ago

    Is it possible to login or attempt to reset your password via another mechanism / URL other than wp-login.php? I have restricted the IP addresses to my wp-login.php file, but I think I’m seeing activity that indicates hackers are still trying to brute force login to my site. If there is another mechanism for logging in (say via the REST API or XML-RPC) then I want to restrict access to it as well.

Viewing 1 replies (of 1 total)
  • Thread Starter billb101

    (@billb101)

    I think I figured this out – it does look like you can use XML-RPC to login in addition to wp-login.php.

Viewing 1 replies (of 1 total)
  • The topic ‘IP blocking logins via all login methods’ is closed to new replies.