Coin Auth Wordpress Plugin - Rating, Reviews, Demo & Download
Plugin Description
This plugin deters brute-force attacks on the WordPress admin dashboard by implementing a “proof-of-work” authentication workflow using the Coinhive.com captcha API. This plugin requires a Coinhive.com account to mine cryptocurrency in the browser. The server will verify the amount of work completed by the client and allow a login request to wp-login.php if verification is successful. We hope to deter brute-force attacks on WordPress sites by introducing this economic control.
To do
- Logging feature
- Pull additional data about coinhive account to display in admin dashboard
- Assign additional work to brute-force offenders automatically
Additional reading
3rd party tools used in this project & privacy
- Coinhive API / https://coinhive.com/documentation/http-api
- Coinhive Privacy policy / https://coinhive.com/info/privacy
- cryptocompare.com and authedmine.com are also associated with the Coihive API requests.
Screenshots
-
WordPress login, proof-of-work UNVERIFIED
-
WordPress login, proof-of-work VERIFIED
-
Coin Auth Settings
-
‘proof-of-work’ workflow