Rather than blacklist logins, why not whitelist your own IP (example 12.345.67.891 below; or a range) for wp-login.php and in wp-admin for logins and administration? (No plugin needed).
A whitelist will block everyone else except you from login. See http://httpd.apache.org/docs/2.4/howto/access.html
in the .htaccess in the wp-admin folder:
Options All -Indexes
order deny,allow
deny from all
allow from 12.345.67.891
allow from 12.345.89.0/24 //example CIDR range; see http://www.ipaddressguide.com/cidr#range
deny from all
in the .htaccess in web root:
<Files wp-login.php>
order deny,allow
deny from all
allow from 12.345.67.891
allow from 12.345.89.0/24 //example CIDR range
deny from all
</Files>
And then check your logs afterward.
Related Posts:
- Securing Admin Accounts – Username Discovery
- What are the standard admin CSS id/class tags?
- wp_verify_nonce vs check_admin_referer
- Modal window from within WordPress admin
- How does admin-ajax.php work?
- How to Change the Default Home Page for the WordPress Dashboard?
- How To Remove WordPress Version From The Admin Footer
- Set Default Admin Colour For All Users
- Can an admin check passwords of registered users?
- How-to make the admin area mobile friendly [closed]
- How to obtain the user ID of the current profile being edited in WP-Admin?
- 3.3: How do you hide the new dashboard welcome panel?
- Appearance->Editor not visible
- Possible to create placeholder images in WordPress editor that are clickable (should bring up uploader)?
- Admin pages have no content
- Blocking Administrative Access to Authors and Subcribers?
- How to find out if an wp-admin action edited a file?
- How to display only logged in user’s post comments in comments area
- WordPress 3.8 get current admin color scheme
- How to Use Resposive Tables in WordPress ADMIN Pages?
- How can I access profile Admin Colour Scheme
- I keep getting logged out in Firefox
- Add tabbed menu to admin page
- remove_action with profile_personal_options
- Getting the different post statuses + count like in edit.php, in a custom submenu page
- how to redirect to url.com/wp-admin if url.com/admin is typed in?
- How To Create User Specific Admin User Pages?
- Change the Default Pages Menu View in wp-admin
- Change WP-Login or WP-Admin
- Conditionally load CSS/JS/PHP in wp-admin if using a mobile device
- How to disable automatic excerpt generation *in admin*?
- Limit Words in Category / Term Description – Admin Panel
- Change top level menu item to point to custom submenu item
- Assuming a theme is properly secured, how save is the WordPress admin?
- Associating custom submenu item with post type of top level menu item
- Don’t attribute content to admin users
- Adding text in more than one language (at the same time)
- wp-admin post.php JavaScript Links Not Working
- I want to disable login of admin (/wp-admin) with email and make it accessible only with username
- Super slow admin panel
- Admin Taxonomy Terms – Orderby Term Field
- How do I add an admin notice within javascript in the admin interface for posts?
- Fatal error: Exception thrown without a stack frame in Unknown on line 0
- Hide Pages on Edit Pages based on Capability (edit_others_pages)?
- WordPress ACL (folder + permissions)
- Unable to Access WP Admin or Login buttons after Migration
- Add ‘Last Modified’ and Attachments (Yes/No) to WordPress Users Column
- Editors change a permalink on an unpublished post, but only admins change a permalink on a post that has ever been published?
- How Can I Found Admin Directory
- WordPress post feature image not uploading
- Combine and Minify wp-admin files, also re-write URI’s for CDN
- using rewrites to secure login page
- 500 internal server error on wp-admin only
- Redirect from the dashboard to edit.php if wp_is_mobile() is true
- Seems that admin_post_{action} does not executing
- Add Custom Script in Other Plugin’s Options page
- When submitting the form site.com/blog/wp-admin it goes to site.com/wp-admin
- Can I host WP-admin locally for a remote blog?
- get_current_screen and the WP_Screen class
- Is there alternative to WP_List_Table?
- How do I diagnose a plugin resource 404?
- Admin login not working
- Changing admin user id for database
- WordPress custom admin functions security
- Adding and removing columns from the admin pages panel
- Does deleting the table users prevent all logins?
- How to make sure your admin doesn’t hi-jack you site?
- How to change the descriptive text on the menus admin page?
- Dynamic WordPress Admin Panel
- Wp-Admin FTPS Connection Error unlike Filezilla
- Why does my admin email address keep changing to something random?
- Where to store publicly-accessible files
- How to update my website with WordPress?
- wordpress login loop after install
- Unable to render Admin Notices
- WordPress login not working
- Admin blank but Admin menu showing
- Capability to read/edit page in wp-admin only for administrators
- Problems in migration of WordPress site from local server to the online server
- WYSIWYG editor not in a post editor?
- htaccess and htpasswd
- plugin to upload to youtube via wordpress [closed]
- You do not have permission to access this document on form submit
- Organizing Code in your WordPress Theme's functions.php File?
- WordPress admin stylesheet
- using slug instead of ID in admin edit post url
- Taxonomy/category hierarchy lost when editing posts [closed]
- How get Themes list via REST api?
- How to remove “publish metabox” from each post type
- How to hide wordpress default description box?
- Admin doesn’t have sufficient permissions to plugin’s page
- Hide metabox dependant on page template chosen
- admin_enqueue_scripts not rending JS file correctly
- Send admin to a different login than users?
- WordPress Plugin Admin Tab
- How to remove menu from WP-Admin menu
- How to sort post_meta in edit.php?
- Scripts are not called until I login from wordpress backend
- WordPress admin panel is blank
- Display notice in block editor after wp_insert_post_data hook