List of WordPress hooks available in WP Cerber version 3.0 and above. It’s handy to use them to customize and fine tune Cerber without coding (e.g. with the jetFlow.io plugin). Filters cerber_msg_reached Applied to the message for a user if they reached the limit on login attempts. First argument is the mesage. The second argument [...]
As you already know, there is small, but very useful feature that called a list of prohibited logins/usernames. It’s a comma-separated list of usernames you do not want to be used on your website in any circumstances. That’s it? No, there is no “just in case” feature in the WP Cerber plugin. But how does [...]
IP Access Lists (commonly referred to as ACLs) aimed to restrict access to vital WordPress functions, WordPress login and registration forms from unwanted computers and bots in the network. The WP Cerber plugin supports two types of access lists: White IP Access List and Black IP Access List. Both access lists are manually [...]
You can create your own Custom login page (rename default wp-login.php) in no time. After you have configured the Custom login URL, the plugin will display wp-login.php page with the newly configured URL.
What is reCAPTCHA, anyway? reCAPTCHA is a human verification mechanism that created and maintained by Google as a free web service. WP Cerber supports reCAPTCHA for WooCommerce and WordPress forms as antispam feature. Why does reCAPTCHA not protect WordPress from bots and brute-force attacks? Because WordPress has three [...]
If your site is behind the Cloudflare proxy service and your WordPress is protected by the WP Cerber plugin, you have to do two things to let them work well together. Check My site is behind a reverse proxy in the main WP Cerber Security plugin settings. Exclude the Custom login URL you have set in the WP Cerber settings from [...]
It can be easily done by having the jetFlow.io plugin installed and using a tiny workflow. Security Blog Antispam protection for WordPress forms Development versions Development version 5.7.2 Development versions Development version 5.6.5 Releases WP Cerber Security 5.7
I am pleased to announce an absolutely new automation plugin that has recently arrived. The jetFlow plugin is an automation tool that brings power of workflows to your WordPress powered site. This new plugin allows you to automate almost any task or business process without coding knowledge. Furthermore, you can fine tune any aspect of [...]
What is new? Added ability to check and block prohibited usernames (logins). You can specify list of usernames (logins) on a new settings tab called Users. The plugin will immediately block any attempt to log in and will lock out any IP address have tried to use those logins. It’s recommended to have at least following [...]
A few days ago, WP Cerber surpassed 10,000 active installs according to the WordPress.org plugin repository. That means the plugin has more than ten thousand happy customers. Congratulations! Security Blog Brute-force, DoS, and DDoS attacks – what’s the difference? Releases WP Cerber Security 5.5 Security Blog Best [...]
Small issues in the plugin were fixed Fixed bug for non-English WordPress configuration: the plugin is unable to block IP in some server environment. If you have configured language other than English you have to install this release. Fixed two small bugs related to 1) unable to remove IP subnet from the Access Lists and 2) getting IP [...]
This article assumes that we want to create a bulletproof protected website powered by WordPress. It’s not necessarily to do all the following steps word for word and point by point exactly as described. But I do recommend that if you want to create your own Fort Knox. Releases WP Cerber Security 5.5 Development versions [...]
You can find plenty of comments and advice on that on the Internet. But is it real? Releases WP Cerber Security 5.5 Releases WP Cerber Security 5.7 Security Blog Best WordPress Plugins for Two-Factor Authentication Security Blog Brute-force, DoS, and DDoS attacks – what’s the difference?
What’s new in the most powerful and flexible solution to mitigate brute force attacks and hardening WordPress New: Now you can easily view extra WHOIS information for IP addresses in the activity log including country, network info, abuse contact, etc. New: Added ability to disable WordPress REST API, see Hardening WordPress New: [...]