This plugins stops brute force login attempts on the login form in the backend. After a set number of attempts a small captcha (arithmetic task) has to be solved successfully to get access, even if the credentials are entered correctly. After another set number of attempts with the captcha, the access to the backend is blocked completely for a specified grace time for the requesting IP address.
The locked IP addresses are stored permanently as small files in a protected lock folder. Once the grace time of a file has expired, the outdated file is removed automatically from the lock folder.
Type: System Plugin
Joomla! Version: >= 3.9.0