Still attacks after .htpasswd in /wp-admin

  • Hello!

    Tired of all scripted brute force attacks I decided to put an .htpasswd file inside the /wp-admin directory (“require valid-user” in .htaccess). Since I’m the only one logging into the admin it’s no problem.

    My question:
    How can it be the plugin is still sending multiple emails a day saying IP’s are being banned after too many failed login attempts? Connecting to the wp-login.php is impossible without proper credentials.

    Thanks for your help!

    Cheers! ??

  • The topic ‘Still attacks after .htpasswd in /wp-admin’ is closed to new replies.