Plugin categories

Create a Website with AI
All pluginsSecurity

Limit Login Attempts Reloaded

Logo
Limit Login Attempts Reloaded

Block excessive login attempts and protect your site against brute force attacks. Simple, yet powerful tools to improve site performance.

4.9

Rating summary

1256

Reviews

2M

Active installations

Download the Plugin
+1
Main benefits

Restricts login attempts

Protects custom login pages

IP and username denylist

Email lockout notifications

XMLRPC gateway protection

About this plugin

Author: WPChef
Categories: Security
Version: 2.26.9
Last updated: 03-05-2024
WordPress version: 3.0
Tested up to: 6.5.3
PHP version required: false
Languages: Catalan, Chinese (China) [+63]
Tags:

Brute Force

Firewall

Login

Protection

Security

Learning resources: View resources

Overview

Limit Login Attempts Reloaded is a highly effective security plugin designed to protect WordPress websites from brute force attacks by limiting the number of login attempts from a single IP address. It serves not only the standard login method but also covers XMLRPC, WooCommerce, and custom login pages, offering a comprehensive shield against unauthorized access. With over 2.5 million active users, this plugin automatically blocks further login attempts after a specified number of failed tries, significantly reducing the threat of brute force attacks. The premium version provides enhanced features such as IP intelligence, country-wise blocking, synchronized lockouts across multiple domains, and cloud-based protections, ensuring optimal website performance and robust security. Additionally, it is compatible with popular security plugins like Sucuri and Wordfence and supports multiple languages.

Limit Logins

  • Restricts the number of retry attempts when logging in per each IP.
  • Applies to standard login, XMLRPC, Woocommerce, and custom login pages.
  • Weakens the effectiveness of brute force attacks.

Configurable Lockout Timings

  • Allows modification of the amount of time a user or IP must wait after a lockout.
  • Informs the user about the remaining retries or lockout time on the login page.
  • Enhances user experience by providing clear feedback.

IP & Username Safelist/Denylist

  • Enables control over access to usernames and IPs.
  • Supports custom IP origins like Cloudflare and Sucuri.
  • Provides additional security by allowing specific IPs and usernames to be whitelisted or blacklisted.

Enhanced IP Intelligence (Premium)

  • Identifies repetitive and suspicious login attempts to detect potential brute force attacks.
  • Stores IPs with known malicious activity to prevent future attacks.
  • Utilizes active cloud IP data from thousands of websites in the LLAR network.

Features list

Feature

Premium version

Includes 10 domains

Allows management of up to 10 domains.

Performance Optimizer

Optimizes performance starting from 1M requests per month, with 100k requests per domain.

Add more requests as needed

Provides the flexibility to increase the number of requests based on demand.

Resell and package to clients

Enables reselling and packaging of services to clients.

Easily add or remove domains

Simplifies the process of adding or removing domains.

Everything in Professional

Includes all features available in the Professional plan.

Agency Dashboard

Provides a dashboard tailored for agency management.

Pricing

Premium

$7.99 / Monthly

Plan includes

Limit Login Attempts
Configurable Lockout Timings
GDPR Compliance
WordPress Login Page Protect (Includes WooCommerce & XMLRPC)
Safelist/Denylist (Supports IP Ranges)
Lockouts Log
Configurable Email Notifications On Lockouts
Trusted IP Origins

Agency

$45 / Monthly

Plan includes

Includes 10 domains
Performance Optimizer
Add more requests as needed
Resell and package to clients
Easily add or remove domains
Everything in Professional
Agency Dashboard

In some cases companies have different prices based on various components like a location. As a result the prices displayed here can differ from the ones you see on their websites.

See all pricing options
Find Your Price Plan

Rating and reviews

4.9

Rating summary

1256

Reviews

2M

Active installations

5
4
3
2
1

User sentiment analysis

Users appreciate the WordPress plugin for its simplicity, reliability, and effectiveness in enhancing website security. They specifically commend its capability to block unauthorized login attempts and hacker attacks, which provides peace of mind and protects their sites. Features such as email notifications about suspicious activities and the ability to track login attempts are particularly valued. However, some users find the regular email alerts annoying, and a few have experienced technical issues with updates. Additionally, there is criticism that the plugin's method of limiting attempts per IP address could be circumvented by changing IPs, and the dashboard widget is considered too large by some.
webde5igner

webde5igner

25 Apr, 2024

Great thanks, is too userfull
Frank Otto

Frank Otto

25 Apr, 2024

Smooth operation and so far no problems with this exquisite tool. Thanks for developing. Highly recommended.
wpuserah

wpuserah

19 Apr, 2024

Very helpful, thanks.
antjeheinemann

antjeheinemann

19 Apr, 2024

very happy with it
rhounage

rhounage

12 Apr, 2024

Helps you make you site more secure.
See All Reviews

More plugins like this

All-In-One Security (AIOS) – Security and Firewall
All-In-One Security (AIOS) – Security and Firewall

4.7

1M

Security

Loginizer
Loginizer

4.8

1M

Security

Security Optimizer – The All-In-One WordPress Protection Plugin
Security Optimizer – The All-In-One WordPress Protection Plugin

4.6

1M

Security

FAQ

What do I do if all users get blocked?

How do I know if I’m under attack?

How can I tell that the premium plugin is working?

Could these failed login attempts be fake?

What happens if my site exceeds the request limits in the plan?

What URLs are being attacked and protected?

Why is LLAR more popular than other brute-force protection plugins?

What to do when an admin gets blocked?

What settings should I use in the plugin?

Can I share the safelist/denylist throughout all of my sites?

TenWeb, Inc.

40 E Main St, Suite 721

Newark, DE 19711

United States

Company

About usContact usSecurity statementAffiliiatesAffiliate termsCareerPricing

Product

AI Website BuilderAI EcommerceHostingPageSpeed BoosterAI Business Name GeneratorIndustriesAI AssistantAI Marketing Strategy GeneratorPluginsWidgetsWebsite management

Customers

10Web for agencies & freelancersCase studies10Web for SMBsCustomer reviews

Resources

Help CenterBlogHosting glossarySite speed glossaryPress KitRoadmapSubmit your ideaFacebook communityAI technologySystem status

Copyright © 2024 TenWeb. All rights reserved.

Privacy
Terms of Service
SLA
Report Abuse