It was, until recently, one of the plugins that I listed on by top 5 plugins. However, after some playing with the plugin I am afraid that I am removing from my list. It just doesn’t live up to the promises that it makes.

Not on my installations anyway. Feel free to let me know though if you have it working!

First, it did not create the table that it needed during the installation process. This was easily remedied even if the plugin never told me that it was not recording failed login attempts.

And, once the table was created it did indeed lockout the wp-login.php page. But, by simply submitting the login request to the wp-admin page instead, I could still login!

This is obviously a huge failing. I would simulate the three failed logins, be logged out, go to the wp-admin page and then login quite happily. I tried the process again and the same happend. I even checked the table in case I was given a new IP address during the attempts, but the same IP address was recorded all 6 times.

Whether it stops anyone getting on with a script I am doubtful. Without writing a bulk login script to test it out I do not know for certain. But I am very dubious.

Sadly, it looks like I might be back to the dreaded security plugin that I have just removed that validates every IP address. There has to be something better for me to use!

Digg This
Reddit This
Stumble Now!
Buzz This
Vote on DZone
Share on Facebook
Bookmark this on Delicious
Kick It on DotNetKicks.com
Shout it
Share on LinkedIn
Bookmark this on Technorati
Post on Twitter
Google Buzz (aka. Google Reader)

If you want to keep up with our latest posts, just follow us on our RSS feed, join our weekly newsletter or follow us over at Twitter. Please do join in - it is totally free and only the best posts are passed to you!

Also, leave a comment below. We are a 'DoFollow' blog, so it is well worth your time. Thanks for calling in.

Similar Articles You Might Like To Read:
    Limit Login Attempts – better than Login Lockdown! After a little bit of research, I have removed Login Lockdown and instead installed Limit Login Attempts. After trying them...
    Login Lockdown Does Not Always Work! I do not know quite what made me do it, but I went to the admin logon screen of one...
    Locking Down Your WordPress Admin Login If someone is going to attempt to attack your blog through brute force, a good password and an unusual admin...
    Protecting WordPress From Brute Force Hackers So, what can we do to protect out blogs from brute force attacks, where hackers just spend ages trying out...
    Protecting Your Admin I have talked already about important steps such as using a secure password and changing your admin user id, but...
    My Five Must-Have WordPress Plugins We all have different plugins that we cannot live without and I certainly have a collection of 5 very important...
    Limit Login Attempts And Lock Out Hackers One way hackers will try to hack into a target website is by running a program that tries thousands of...
    Securing WordPress – 7 Essential Security Steps For Every Blog Preventing hackers and other unwelcome people from accessing your blog is essential. But WordPress, if not correctly used, can be...
    This week you have been reading… In the interests of trying to help new visitors find their way around the website I am going to start...
    Too Much Security Is A Pain! I wrote last week that I was trialling a security plug Login Lockdown on many of my blogs. I have...