[wp-hackers] Limit Login Attempts

Paolo Tresso paolo.tresso at swergroup.com
Wed Apr 17 16:07:44 UTC 2013

On 17/04/2013 11.30 -0400, Chris Williams wrote:

> But... A central service, with a view of this problem across the world,
> can make a huge difference.

If you're looking for an external service to deal with this, like
Akismet for spam, you should have a closer look at cloudflare.com or

Cloudflare is mostly CDN-oriented while Incapsula is more
security-focused: both deals with this kind of threats at the right
level, the DNS one.

They are a cheap/cloudy way to do what you should be doing in a
dedicated environment: put some filter/proxy/caching between your
webserver and the internet, and let it filter out the bad. 
Cloudflare is known for working with hosting and service providers to
support and debug their filtering.

That's it: both services leverages their network to identify and block
suspects and/or bad behaviours *before* they can reach WordPress, acting
on the external DNS level instead of taking actions from inside WP.

Hope it helps.

Paolo Tresso
Lead Developer


More information about the wp-hackers mailing list