Settings & Features

Secret Login URLs

• Global secret: one URL for all users (e.g., /dragon-lair).
• Role secrets: add different slugs per role (e.g., /editor-door).
• User secrets: per-user slug from their profile.
• After changes: visit Settings → Permalinks and click Save.

Honeypot at /wp-login.php

• Shows a fake login that always “fails” and logs details.
• Optional auto-block IP for N minutes after hits.

IP Allow/Deny (CIDR)

• Whitelist and blacklist for IPv4/IPv6 (e.g., 203.0.113.0/24).
• Combine with honeypot for layered defense.

Schedules (Days & Times)

• Allow logins only during defined windows (e.g., Mon–Fri, 09:00–17:00).
• Admins are exempt (optional).

Country Rules

• Requires a GeoIP provider to expose ISO-2 via the sls_pro_detect_country filter.
• Choose allow-list or deny-list mode and set countries.

Logs & Exports

• Filter by type/date; set retention days.
• Export CSV or JSON for audits/forensics.

More: FAQ & Troubleshooting · Changelog