How to Simulate a Login Failure

1 post Page 1 of 1
Junior Member
Posts: 1
Joined: 09 Mar 2019, 14:02

Hello, I have an idea and I'm wondering if it's practical. It would require CSF Firewall considering every access of a PHP page to be a login failure, even though there was no actual login.

My idea is simple. Almost all my sites are hand coded, so there does not exist (for example) a page named "wp-login.php." I want to redirect all those requests for non-existent CMS or forum logins to a single PHP page, which in turn would register a login failure that CSF would use as a basis for blocking the offending IP according to its configured lfd rule set.

I think this would be preferable to executing a script as root from the page. CSF already has lfd built-in, so simulating a failed login would be a safer way to do it.


1 post Page 1 of 1