I would like to be able to set up a rule to automatically ban any IP address that has a failed login attempt on 'admin'
I'm getting thousands of these per week and would like them stopped.
Also, can we, as a community, pool this data together to build a better defense against these sorts of actions, such as automatically blacklisting IP address for a time period for everyone on any IP that is known to be used to attack wordpress sites.
I NEVER use the login admin so right off the bat, anyone attempting to login with admin should be BANNED IMMEDIATELY!
Also, any other recommendations on further hardening my wordpress would be great!