前言介紹
- 這款 WordPress 外掛「MelaPress Login Security」是 2023-02-22 上架。
- 目前有 2000 個安裝啟用數。
- 上一次更新是 2025-04-16,距離現在已有 17 天。
- 外掛最低要求 WordPress 5.5 以上版本才可以安裝。
- 外掛要求網站主機運作至少需要 PHP 版本 7.3 以上。
- 有 12 人給過評分。
- 論壇上目前有 2 個提問,問題解答率 50%
外掛協作開發者
外掛標籤
login | Brute Force | limit logins | login security | limit login attempts |
內容簡介
提高 WordPress 登入安全性,實現自定義安全 WordPress 登入策略
透過將自己置於驅動器座位的策略,實現更好的 WordPress 登入安全性。這些登入安全策略具有高度的自定義和精細度,可以按用戶角色或站點規則全面實施,完全控制您的網站登入流程的安全性。
功能和優點 | 付費試用版 | 開始使用
使用 MelaPress Login Security 實現 WordPress 密碼最小長度和複雜性。該外掛還允許您設定密碼到期策略,並防止用戶重複使用舊密碼。
由 WP WHITE SECURITY 維護和支持
WP White Security 提供高質量的 WordPress 安全和管理外掛,例如 WP 2FA 和 WP Activity Log,後者是 WordPress 中評價最高的用戶活動記錄外掛。
瀏覽我們的 WordPress 安全和管理外掛列表,了解我們的外掛如何幫助您更好地管理和提高 WordPress 網站和用戶的安全和管理。
特點
透過以下外掛功能,確保您的 WordPress 用戶使用最安全的密碼策略:
特點列表
逐個角色或網站範圍設置策略
在密碼設置期間為用戶提供有用的指示
設置最小密碼長度
強制使用大寫和小寫字母、數字和特殊字符
設置自動密碼到期策略
禁止用戶重複使用舊密碼
禁用密碼重置鏈接
在第一次登錄時強制 WordPress 密碼重置
為擁有多個角色的用戶定義策略優先級
僅需單擊即可重置所有用戶的密碼
升級到 MelaPress Login Security 付費版本,獲得更多功能
MelaPress Login Security 的付費版本附帶更多功能,可將您的 WordPress 網站登錄安全性提升到更高的水平。
在 MelaPress Login Security 的付費版中,您可以輕鬆禁用 WordPress 不活躍的用戶帳戶,並在解鎖帳戶後強制重置密碼。不活躍帳戶
原文外掛簡介
COMPREHENSIVE WORDPRESS LOGIN SECURITY PLUGIN
Melapress Login Security enables you to effortlessly set login security policies that put you firmly in the driver’s seat of your WordPress sites. Policies are highly customizable and granular and can be implemented by user role or site-wide for complete control over the security of your WordPress login processes.
Use the free edition of Melapress Login Security to implement WordPress password requirements such as minimum length and complexity rules. The plugin also allows you to set password expiration policies, prevent password reuse, limit failed login attempts, and automatically disable inactive user accounts, among other things. This helps you:
Prevent unauthorized login attempts
Protect against brute force attacks
Comply with GDPR with a login consent notice
Features list
A secure WordPress login starts right here. Explore all of the features included with the free edition of Melapress Login Security:
Set password policies
Strong passwords are your first line of defense against bad actors looking to gain access to your site. Set password requirement policies to make sure users set strong passwords. Set policies by user role or site-wide and define policy priority for users with multiple roles.
Set minimum password length
Mandate use of upper case and lower case characters, numeric digits, and special characters
Set an automatic password expiration policy and advise users when their password is about to expire
Disallow users from recycling passwords
Provide users with helpful instructions during the password configuration stage
Disable password reset links
Mandate WordPress password reset on the first login
Limit login attempts
Limit failed login attempts and put an end to brute force attacks. Protect your login form by automatically disabling user accounts after a number of failed login attempts. Choose between manual unlocking by an admin or automatic unlock after a cooldown period.
Temporary login without password
Provide temporary and secure login access to third-parties, like developers, editors, employees or others, without a password. It works by providing the user with a temporary login link that expires after a certain amount of time, or after a number of uses. This prevents you from having to create new user accounts manually, while simultaneously reducing the security risks associated with old, unused user accounts.
Change WordPress login URL
Easily deploy security-by-obscurity tactics and change your WordPress login page URL using a plugin! Hiding the default login page from hackers makes it more difficult to find, potentially reducing brute force attacks and other unauthorized access attempts. After you change the default wp-admin URL, you can set a 404 for the old login page or redirect it to any page of your choosing.
Limit login page access by IP address(es)
Limit access to the WordPress login page by IP address(es) for additional security.
GDPR login page consent notice
Easily meet GDPR requirements by adding a GDPR consent notice to the login page. This is required for GDPR and PCI DSS compliance, thus ensuring your WordPress site login page is in compliance.
Emergency password reset
Discovered suspicious behavior? Reset all users’ passwords with just one click and regain instant control.
Upgrade to Melapress Login Security Premium and get even more benefits.
The premium edition of Melapress Login Security comes bundled with even more features, which enable you to take your WordPress website login security to the next level. Disable inactive WordPress user accounts and force passwords to be reset once accounts have been unlocked. Inactive accounts can be managed within a single dashboard for increased efficiency and faster response times. Moreover, you can set accounts to be locked out after a number of failed login attempts and customize the duration and method of unlocking them.
Premium features list
Everything in the free version
Add an additional security layer with security questions users must answer when performing actions such as password reset and account unlock
Automatically send users an email whenever there’s a login with their username from an unrecognized device with an option to terminate the session remotely
Extend or shorten session durations for better balance between security and user convinience
One-click integration with third-party plugins such as WooCommerce, LearnDash, Memberpress, and many others
Automatically disable inactive WordPress users after a set time
Add Geo-blocking rules to restrict login page traffic to specific countries, or block traffic from specific countries
Restrict users’ login to a specific IP address, or a configurable number of IP addresses
Restrict WordPress users’ login time by day and/or hours
Restrict login credentials to email, username, or both
Add a GDPR consent notice to the login page
See reports of when users were last active, what’s their password age, and whose password is expired
Receive detailed weekly summary reports over email of password resets and changes, user account lockouts, and more!
| UPGRADE TO PREMIUM |
Why you should use Melapress Login Security
Melapress Login Security is a WordPress plugin built from the ground up to help you address security concerns and secure your WordPress login. Supercharge login credentials for maximum effectiveness and put a stop to unlimited login attempts, weak passwords, and inactive users. Set up policies to reduce your attack surface area such as login times restrictions, change the WordPress login URL, and much more.
Free and premium support
Support for the free edition of Melapress Login Security is free on the WordPress support forums. Premium world-class support via one-to-one email is available to the Premium users – upgrade to premium to benefit from priority support.
For any other queries, feedback, or if you simply want to get in touch with us, please use our contact form.
MAINTAINED & SUPPORTED BY MELAPRESS
Melapress builds high-quality WordPress security & admin plugins such as WP 2FA, CAPTCHA 4WP,and WP Activity Log, the #1 user-rated activity log plugin for WordPress.
Visit our website to see how our plugins can help you better manage and improve the security and administration of your WordPress websites and users.
Install the plugin from within WordPress
Keeping a secure WordPress login page is easy with Melapress Login Security. Simply:
From your WordPress dashboard, navigate to Plugins > Add New
Search for “Melapress Login Security”
Install & activate Melapress Login Security from your Plugins page
Install the plugin manually (via file upload)
Download the plugin from the WordPress plugins repository
Unzip the zip file and upload the folder to the /wp-content/plugins/ directory
Activate the Melapress Login Security plugin through the Plugins page in WordPress
各版本下載點
- 方法一:點下方版本號的連結下載 ZIP 檔案後,登入網站後台左側選單「外掛」的「安裝外掛」,然後選擇上方的「上傳外掛」,把下載回去的 ZIP 外掛打包檔案上傳上去安裝與啟用。
- 方法二:透過「安裝外掛」的畫面右方搜尋功能,搜尋外掛名稱「MelaPress Login Security」來進行安裝。
(建議使用方法二,確保安裝的版本符合當前運作的 WordPress 環境。
1.0.1 | 1.1.0 | 1.1.1 | 1.2.0 | 1.2.1 | 1.2.2 | 1.3.0 | 1.3.1 | 2.0.0 | 2.0.1 | 2.1.0 | 2.1.1 | trunk |
延伸相關外掛(你可能也想知道)
WPS Hide Login 》中文, WPS Hide Login 是一個非常輕量的外掛,讓您輕鬆且安全地更改登入表單頁面的網址。它不會真正地重命名或更改核心檔案,也不會添加重寫規則。它只是攔截...。
Security Optimizer – The All-In-One Protection Plugin 》透過精心挑選且易於配置的功能,SiteGround Security 外掛提供了您所需的一切來保護您的網站並預防多種威脅,例如暴力破解攻擊、登錄錯誤、資料外洩等等。, ...。
Loginizer 》Loginizer 是一個 WordPress 外掛,可幫助您對抗暴力攻擊,當 IP 地址達到最大重試次數時,該外掛會阻止其登錄。您可以使用 Loginizer 將 IP 地址列入黑名單...。
Limit Login Attempts 》此外掛可限制正常登入及使用驗證 cookies 登入的次數。, WordPress 預設允許使用者無限次數嘗試登入,無論是透過登入頁面或是傳送特殊 cookies 皆可。這讓密...。
LoginPress | wp-login Custom Login Page Customizer 》LoginPress 外掛提供了很多自訂欄位,可以更改 WordPress 登入頁面的版面配置。您可以完全修改登入頁面的外觀和感覺,即使是登入錯誤訊息、忘記密碼錯誤訊息...。
WPS Limit Login 》繁體中文, 限制通過登錄頁面和使用權限Cookie可能的登錄嘗試次數。, WordPress 默認情況下允許通過登錄頁面或發送特殊 Cookie 的方式進行無限制的登錄嘗試。...。
Login Lockdown & Protection 》Login LockDown 記錄每次失敗的登入嘗試的 IP 位址和時間戳記。如果在短時間內來自相同 IP 範圍的嘗試次數超過一定數量,那麼該 IP 位址的所有登入請求都會被...。
WP Ghost (Hide My WP Ghost) – Security & Firewall 》Hide My WP Ghost 是一個 WordPress 安全外掛,透過強大且易於使用的功能,提供最佳的安全解決方案。它可以在不改變任何目錄或檔案的情況下,將網站的安全性...。
Custom Login Page Customizer 》Custom Login Page Customizer 外掛可讓您輕鬆地從 WordPress Customizer 自訂您的登入頁面!在儲存之前,您可以預覽自訂的登入頁面變更!太棒了,對吧?, , ...。
All In One Login — WordPress Login Security Plugin to Protect and Customize WP Admin 》Change wp-admin login 是一個輕量級的外掛程式,可讓您輕鬆且安全地更改 wp-admin,讓它變成您想要的東西。它不會重新命名或更改核心檔案,只是攔截頁面請求...。
WP fail2ban – Advanced Security 》Fail2ban是您可以實施來保護 WordPress 網站的最簡單和最有效的安全措施之一。, WP fail2ban 提供 WordPress 與 fail2ban 之間的連接:, Oct 17 20:59:54 foo...。
Theme My Login 》曾經希望您的 WordPress 登入頁面與網站的其餘部分相匹配嗎?現在您的願望成真了!「Theme My Login」讓您可以繞過預設的 WordPress 標誌登入頁面,該頁面與...。
Login No Captcha reCAPTCHA 》此外掛新增了 Google 無人類驗證功能的勾選框,可應用於您的 WordPress 和 Woocommerce 登錄、忘記密碼及使用者註冊頁面,讓人類使用者輕鬆透過勾選框登入,...。
WP-Members Membership Plugin 》8211; allows you to restrict file downloads to registered users only, with customizable download links., MailChimp Integration – integrates W...。
WP Hide & Security Enhancer 》WP-Hide 推出了最簡單的方法,完全隱藏 WordPress 核心文件、登錄頁面、佈景主題和外掛程式的路徑,使其不會顯示在前端,這是 Site Security 的一個巨大改進...。