Stealth Login Page

Wordpress Plugin
Download latest - 4.0.0

Developers

peterdog

Download Stats

Today 11
Yesterday 16
Last Week 122
All Time 86,090
Banner 772x250

Protect your dashboard with a game-changing authorization code. The login form will never be the same again.

What it does

Without locking down access via IP address or file permissions, this plugin creates a secret login authorizaiton code. Those who do not enter this additional authorization will be automatcally redirected to a customizable URL.

This is the first plugin that blocks external bot login requests - login requests must comply with the full login sequence or the request is rejected.

Why it exists

To screw with hackers, brute-force attacks, and bot-nets. Screw with them, too.

NOTE

This does NOT replace the need for security "best practices" such as a strong password or a secure hosting environment. This is an additional layer of security, best combined with a login limiter such as Limit Login Attempts or Login Lockdown.


Releases (9 )

Version Release Date Change Log
4.0.0 2014-12-09
  • TOTALLY re-worked mehodology. It is backwards compatible.
  • WordPress 3.6 compatibility.
  • Complete re-build of the structure, code, and methodology of its security.
3.0.0 2013-06-03
  • Added full MU support.
  • Disabled the login/logout/lost-password URL filtering - it knows if you're logged in.
  • Added wp-config.php settings support to bypass the settings page if you're locked out or in a MU environment.
2.1.2 2013-05-10
  • Efficiencies improved.
  • Edited global variables for efficiency.
  • Eliminated potential conditional statment oversights in later updates.
2.1.1 2013-05-09
  • Bugfix - stealth re-enabled AND fixed the lost password link on the login page.
  • Pending a fix to correct the redirect upon logout. It involves a WP redirect of a one-time URL that the plugin needs to allow. I can't allow it without allowing all remote attacks again.
  • This plugin is solid, once again.
2.0.2 2013-05-04
  • Bugfix - activating plugin error
2.0.0 2013-05-04
  • Plugged security hole that allowed remote form submissions - CRITICAL UPDATE
  • Requires all fields be filled in on the settings page to avoid saving incomplete entries.
1.1.2 2013-05-01
  • Polish localization.
  • Updated FAQ with new information on why lockouts can still happen. I am working out how to protect from that, also, if it is at all possible.
1.1.3 2013-05-01
1.1.0 2013-04-05
  • Localization release.