wpplugins / ipblock Goto Github PK
View Code? Open in Web Editor NEWThis is a mirror of the svn repo: https://plugins.svn.wordpress.org/ipblock/, the master is always the latest release.
Home Page: http://wpplugins.it
This is a mirror of the svn repo: https://plugins.svn.wordpress.org/ipblock/, the master is always the latest release.
Home Page: http://wpplugins.it
=== Plugin Name === Contributors: helium-3 Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=P5UC9VG3Q687N Tags: block ip, admin, administration, authentication, login, password, php, plugin, plugins, wordpress, bruteforce, login throttling, security, harden wordpress, limit login attempts Requires at least: 3.5 Tested up to: 4.2.2 Stable tag: 1.1.1 License: GPLv2 or later License URI: http://www.gnu.org/licenses/gpl-2.0.html IPBlock offers powerful protection against bruteforce login attacks. Works in 2 modes, allowing you to set your own blocking scheme. == Description == IPBlock limits number of attempts an user has to log in, thus providing very good protection against automated login attacks. It is highly customizable, you can set your own blocking scheme and decide what is the best to not annoy forgetful users. You can also customize every message displayed to users. Featuring 2 working modes: Mode 1 - set a small delay after each attempt e.g. <ul> <li>1 attempt = no delay</li> <li>2 attempts = 5 sec delay</li> <li>3-4 attempts = 15 sec delay</li> <li>5-9 attempts = 30 sec delay</li> <li>10+ attempts = 45 sec delay</li></ul> This is just an example! You can program it however you want. Mode 2 - allow a number of attempts in given time. For instance, allow 5 attempts in 15 minutes. Time left is displayed in proper formatting, e.g. 10 seconds, 1 minute, 3 hours This plugin doesn't use plugabble functions and should be compatible with any other plugin. == Installation == 1. Upload `ipblock` to the `/wp-content/plugins/` directory 1. Activate the plugin through the 'Plugins' menu in WordPress 1. Go to settings in your dashboard and choose IPBlock to change settings == Frequently Asked Questions == = What is record expiration time? = This option is also only for Mode 1. Record expiration time tells how long to track an ip after last login attempt. An ip record has a certain expiration timestamp, when it expires it is treated as it doesn't exist and is pending removal. Every time a login attempt is made expriation timestamp is set to a sum of current timestamp and record expiration time. For example if an ip has 20 login attempts and record expiration time is 60 seconds and if user of that ip won't log in in next 60 seconds, the record will be no longer valid and ip will be treated as if it made 0 attempts. = What is delay scheme? How to use it? = Note that since version 1.1 there's a more user friendly interface to set up the blocking scheme, but the rules are still the same. Scheme dictates what delay to set after a number of failed login attempts. It's used if you choose Mode 1. It's composed of pairs login_attempts(+)=>delay (in seconds); Lets start with a single rule, e.g. 5=>10; This rule tells to set a delay of 10 seconds after 5 or more login attempts. Lets add another rule: 5=>10; 10=>20; 10 seconds will be set on 5 or more attempts, but there's a rule for 10 or more attempts, so this second rule is more important in its scope. The result of this will be: *5-9 attempts = 10 second delay *10 or more attempts - 20 seconds delay Another examples: 1=>2; 2=>4; 3=>8; 4=>16; 5=>32; 8=>64; <ul> <li>1 attempt = 2seconds</li> <li>2 attempts = 4 seconds</li> <li>3 attempts = 8 seconds</li> <li>4 attempts = 16 seconds</li> <li>5-7 attempts = 32 seconds</li> <li>8 or more attempts = 64 seconds</li> </ul> 2=>5; 3=>15; 5=>30; 10=>45; <ul> <li>1 attempt = no delay</li> <li>2 attempts = 5 sec delay</li> <li>3-4 attempts = 15 sec delay</li> <li>5-9 attempts = 30 sec delay</li> <li>10+ attempts = 45 sec delay</li> </ul> == Screenshots == 1. easily set the blocking scheme 2. customize output messages 3. delay was set notice (Mode 1) 4. cannot login yet error 5. number of attempts used notice (Mode 2) 6. all attempts used notice (Mode 2) == Changelog == 1.1.1 Bug fix: Removed reference to deprecated file 1.1 Javascript frontend for blocking scheme - setting scheme is now much easier 1.0 Released: December 18 2014 *Initial release
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.