WordPress Brute Force Attack Protection – Limit Login Attempts Reloaded

WordPress Brute Force Attack Protection – Limit Login Attempts Reloaded Plugin (Free)

In this tutorial I will show you how to protect your WordPress website from brute force attacks.
I will also explain what a brute force attack is.

You can download a free plugin for WordPress Brute Force Attack Protection. In this tutorial I will show you how to activate it.

Table of Contents

What is a Brute Force attack?

A brute force attack is basically a hacking method that use trial and error to crack passwords.
The hacker tries multiple usernames and passwords, often using a computer to test a wide range of combinations until they find the correct login information. Unfortunately by default you can enter different combinations repeatedly.

So that’s a big risk because with a brute force attack the password gets cracked very easily. Of course you want to prevent that. To do this you can install a very helpful free WordPress plugin which I will show you in a few seconds.

But just to make sure you get everything clear I want to first show you how it works right now.
So let me go over to an Incognito tab. And as you can see this is the login screen for the WordPress dashboard and I have created a staging website. So, as you can see if I now enter just a random username and password and I click on the login button a message will be displayed.

It says that the log in credentials is not correct, and you can try it again over and over.
If a computer does this and tries a ton of combinations in just a few seconds, then a password can be cracked in no time.

WordPress Brute Force attack protection free Plugin (Limit login attempts reloaded)

Now I’m going to show you a free WordPress plug-in which will prevent this.
And when you enter a wrong username or e-mail address more than 3 times then your IP will be blocked.

Let me show you how it works so I will go over to the WordPress dashboard over here.
What you need to do is you need to go over to the Plugins, and you need to click on Add new.

Add new WordPress Plugin for wordpress brute force attack protection

Here you can search for plugins and the plugin you need to search for is the Limit login attempts reloaded. As you can see it has over 2 million active installations. You need to click on install now. Wait a couple of seconds and now you see activate. So just click on the button to activate the plugin.

download Limit login attempts reloaded plugin for wordpress Add new WordPress Plugin for wordpress brute force attack protection

Now you can see this message over here.  You can see this option being added to the menu on the left. It says limit login attempts and if you click on it then you can go to the dashboard for this specific plugin.

Limit login attempts reloaded plugin menu options download Limit login attempts reloaded plugin for wordpress Add new WordPress Plugin for wordpress brute force attack protection

If you go over to the settings tab, you can do the settings for the plugin. Here you can see that this option notify out and what it does is it will automatically send an e-mail with a notification to the e-mail address that will be entered in this field. This is my private e-mail so therefore I have blocked it but just enter your e-mail address over here.

Limit login attempts reloaded wordpress plugin settings Limit login attempts reloaded plugin menu options download Limit login attempts reloaded plugin for wordpress Add new WordPress Plugin for wordpress brute force attack protection

Over here you can also see that by default it’s set to three lockouts. That means now with this plugin activated you can try three different combinations and after that the IP will be locked out for certain period.

If you then try more wrong combinations from the same IP address, then it will be locked out for a longer period. I’ll just leave this at the fault, but of course you can change this if you want to.

How The Limit login attempts reloaded protects your website from Brute Force attacks

Now let me go to the Incognito tab. Now I will try a wrong combination again and now you can see the message says incorrect username or password, 3 attempts remaining.

Limit login attempts reloaded wordpress brute force protection Limit login attempts reloaded wordpress plugin settings Limit login attempts reloaded plugin menu options download Limit login attempts reloaded plugin for wordpress Add new WordPress Plugin for wordpress brute force attack protection

So that’s great! Everything is working fine.

The Limit login attempts reloaded is a great plugin to prevent your website from brute force attacks.

Just install the plugin. Enter your e-mail address for which you want to receive the notifications on and after that just leave everything by default settings and then everything will work fine.

In the video tutorial I will explain everything in more detail and you can watch it on YouTube over here.

Check out this tutorial to learn which free WordPress plugins are recommended for any website.
For security reasons and performance of your site it’s recommended to keep your themes and plugins updated

In another tutorial I have explained how to change the login URL for WordPress websites with a free plugin.

You can also track the site activity for WordPress websites very easily with a free plugin.

In this tutorial I have made a quick review about three free WordPress plugins to optimize the security of your website.

I hope this tutorial is helpful. It that’s the case make sure to subscribe to the channel and drop a like and comment.
Thanks, and I hope to see you back in the next tutorial!