Login Lockdown & Protection

Description

Login Lockdown records the IP address and timestamp of failed login attempts. If more than a selected number of attempts are detected within a set period of time from the same IP, then the login is disabled for all requests from that IP address or the IP is completely blocked from accessing the site. This secures the site and helps prevent brute force password attacks and discovery.

The plugin defaults to a 1 hour lock out of an IP block after 3 failed login attempts within 5 minutes. This can be modified in options. Administrators can release locked out IPs manually from the panel. A detailed log is available for all failed login attempts and all IP locks to control lockdown.

Configure the plugin from Settings - Login Lockdown.

Country blocking is a PRO feature that allows you to block unwanted countries from accessing the site or logging in. Display a custom message to blocked visitors so they know why they can't access the site.

Captcha helps get rid of bots and brute-force password attacks. Choose from 5 different versions, including built-in options and Google versions (PRO feature). Built-in captcha is GDPR compatible.

Two Factor Authentication (2FA) is a PRO feature that provides an extra layer of security without needing code generating apps. Even if someone knows your username and password, they won't be able to log in without confirmation from a unique link sent to your email.

Cloud Protection is a PRO feature that allows you to manage IP Whitelists and Blacklists in your Login Lockdown Dashboard, applying them to protect all your sites from a single location.

Temporary Access is another PRO feature that lets you give temporary access to others without sharing a username and password. You can set the lifetime of the link and the maximum number of uses to prevent abuse.

Other Notable Features

Here are a few other notable features of this free Login Lockdown & Protection plugin.

Block Login

Captcha

Firewall

Protect Login

Screenshots

FAQ

Just use standard Plugin overview page in WordPress admin section and deactivate it; or rename the plugin folder /wp-content/plugins/login-lockdown/ using FTP access.