How to block wp-login.php brute logins with cPanel, mod security, and ConfigServer Firewall
If you run a server that hosts numerous WordPress sites you know that constant brute force attempts to login to wp-login.php is a common occurrence. Â Now you could try and convince your clients to install plugins to handle this, but more than likely that’s not really an option. Â Well luckily with a little configuration of mod_security you can easily block these attempts using the free ConfigServer Firewall, and here’s how (WHM/cPanel details added on 1/19/17). (more…)