Description
Login Guard by CubeMage provides a security solution to protect your WordPress login, registration, and comment forms against spam and brute-force attacks.
Instead of relying solely on password verification, this plugin integrates Cloudflare Turnstile to validate visitors before WordPress processes the authentication request. This approach helps reduce server load caused by automated bot attempts.
Key Features:
- Cloudflare Turnstile Integration: Uses a privacy-focused, GDPR-compliant alternative to CAPTCHA for bot verification.
- Pre-Authentication Check: Validates the Turnstile token before the database query occurs, saving server resources.
- Limit Login Attempts: Automatically blocks IP addresses after 5 consecutive failed login attempts within 15 minutes to prevent brute-force attacks.
- XML-RPC Protection: Disables XML-RPC functionality to close a common attack vector often used for DDoS attacks.
- Form Support: Adds protection to the Login form, Registration form, Lost Password form, and Comment section.
- Performance: Uses native WordPress Transients for tracking failed attempts, avoiding the creation of heavy custom database tables.
Configuration:
The plugin includes a setup interface to easily input your Cloudflare Site Key and Secret Key.
Installation
- Upload the
cubemage-login-guardfolder to the/wp-content/plugins/directory. - Activate the plugin through the ‘Plugins’ menu in WordPress.
- Navigate to Settings -> Login Guard.
- Enter your Cloudflare Site Key and Secret Key (obtainable for free from the Cloudflare dashboard).
- Save settings to enable protection.
FAQ
-
Is Cloudflare Turnstile free?
-
Yes, Cloudflare currently offers Turnstile for free.
-
Does this work with WooCommerce?
-
Yes, it protects the standard WordPress login forms, which are often used by WooCommerce.
-
What happens if I get locked out?
-
If you accidentally block your own IP or misconfigure the keys, you can manually rename the plugin folder via FTP (e.g., to
cubemage-login-guard-disabled) to deactivate it and regain access.
Reviews
There are no reviews for this plugin.
Contributors & Developers
“CubeMage Login Guard” is open source software. The following people have contributed to this plugin.
Contributors
Translate “CubeMage Login Guard” into your language.
Interested in development?
Browse the code, check out the SVN repository, or subscribe to the development log by RSS.
Changelog
1.0.0
- Initial release.