This plugin hasn’t been tested with the latest 3 major releases of WordPress. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress.

HTTP/1.1 403 Forbidden header on a failed login


Send an โ€œHTTP/1.1 403 Forbiddenโ€ header on a failed login instead of โ€œHTTP/1.1 200 OKโ€, which is the WordPress default header on failed login. This is a tremendously simple plugin that does only that and absolutely nothing else.

The purpose of this plugin is to provide a way to allow external tools like fail2ban to get a message of a failed login e.g. to prevent a brute-force attack on a firewall level.

For the public domain.

Uses PHP5.3 anonymous functions and will not work on earlier versions of PHP


๐Ÿ‚ ๐Ÿ”Ÿ 9, 2019
This functionality should be default behavior, implemented in the core of WP. Integration with Fail2Ban significantly increase security and performance of WP. Must have plugin
๐Ÿƒ3๏ธโƒฃ 29, 2017
ะ ะฐะฑะพั‚ะฐะตั‚ ะบะฐะบ ะทะฐัะฒะปะตะฝะพ, ะฒัั‘ ะพั‚ะปะธั‡ะฝะพ.
Read all 2 reviews

Contributors & Developers

“HTTP/1.1 403 Forbidden header on a failed login” is open source software. The following people have contributed to this plugin.