Won’t block /login.php

I’m sorry, the page with problems is /wp-login.php

As long as the checkbox in the settings page is set to protect the login form, it should automatically place itself on the login form on wp-login. The only reason I can think that it wouldn’t is if you had another plugin that is taking over login to use a custom form for login that needs special hooks.

Are you using anything like that? If you have a URL you want to share in private, my contact info should be easy to find from the plugin and links on the plugin page.

Actually, sorry I didn’t notice you posted about this plugin and I was mistaking it for another.

True, it will block Tor addresses from all pages if you choose to do so, and if you choose to block logins, it will still allow access to wp-login.php but if someone attempts to authenticate it will say “ERROR: You cannot log in to this website using Tor.” prior to performing any sort of password or user check.

Would you rather access to that was completely blocked if the option to completely block Tor from the site is enabled?

I didn’t know that, current functionality it’s ok for me. Maybe adding that info to the FAQ wouldn’t hurt. Thanks again.

Cool I will keep that in mind next time I do an update. I think the only reason for this is because wp-login.php has so many functions beyond logging in (reset password, lost password etc).