[wp-hackers] Wordpress Event Viewer Plugin
Brian Layman
Brian at TheCodeCave.com
Tue Apr 3 14:24:09 GMT 2007
Nice and clean. Looks good, but I'd get rid of the comma and put the stuff
in quotes, but its your plugin. :)
2007-04-04 00:05:56 WARNING Login Failed: Unknown user "bla"
2007-04-04 00:05:59 WARNING Login Failed: Incorrect password for user
"admin"
When this matures, you should add temp IP banning and etc. :) I'm not sure
account disabling after x failed attempts is good or not. I always thought
that would be a great attack vector on a site. Kind of a new kind of DOS
attack. The site is no good if no one can log in, including the admin.
_______________________________________________
Brian Layman
http://www.TheCodeCave.com
More information about the wp-hackers
mailing list