Is HTTP/1.1 403 Forbidden header on a failed login free?

Yes, HTTP/1.1 403 Forbidden header on a failed login is free to use. It is available as a free plugin on WordPress.org.

How many websites use HTTP/1.1 403 Forbidden header on a failed login?

HTTP/1.1 403 Forbidden header on a failed login has 200 active installations as tracked by WordPress.org.

What are the best HTTP/1.1 403 Forbidden header on a failed login alternatives?

Popular alternatives to HTTP/1.1 403 Forbidden header on a failed login include Akismet Anti-spam: Spam Protection, Sucuri Security – Auditing, Malware…, WP Mail Logging. You can compare them side-by-side on our comparison pages.

Does HTTP/1.1 403 Forbidden header on a failed login work with the latest WordPress?

HTTP/1.1 403 Forbidden header on a failed login has been tested up to WordPress 4.4.34. It requires WordPress 4.0.0+ and PHP false+.

PluginSift

HTTP/1.1 403 Forbidden header on a failed login

Name: HTTP/1.1 403 Forbidden header on a failed login
Rating: 5 (2 reviews)
Author: atmosphear

Send an "HTTP/1.1 403 Forbidden" header on a failed login instead of the default "HTTP/1.1 200 OK"

By atmosphear·Spam·Free

5(2 reviews)

·200 active installs·Updated 10 years ago

Download Visit Homepage Compare

As of April 2026, HTTP/1.1 403 Forbidden header on a failed login is a WordPress spam plugin with 200 active installations and a 5/5 rating from 2 reviews. It has been downloaded 2.1K+ times in total. Requires WordPress 4.0.0+ and PHP false+. Available on WordPress.org since 2016. Last updated 10 years ago — may have compatibility concerns. Top alternative: Akismet Anti-spam: Spam Protection.

5/52 reviews

200active installs

2.1K+total downloads

10 yearssince 2016

Overview

Send an “HTTP/1.1 403 Forbidden” header on a failed login instead of “HTTP/1.1 200 OK”, which is the WordPress default header on failed login. This is a tremendously simple plugin that does only that and absolutely nothing else.

The purpose of this plugin is to provide a way to allow external tools like fail2ban to get a message of a failed login e.g. to prevent a brute-force attack on a firewall level.

For the public domain.

Uses PHP5.3 anonymous functions and will not work on earlier versions of PHP

Read full description on WordPress.org

Ratings & Reviews

52 reviews

5 ★

4 ★

3 ★

2 ★

1 ★

Compatibility

WordPress	4.0.0+ requiredTested up to 4.4.34
PHP	false+ required

Top Alternatives to HTTP/1.1 403 Forbidden header on a…

Akismet Anti-spam: Spam Protection

4.76.0M+ installsUpdated 4 months ago

View Compare

Sucuri Security – Auditing, Malware…

4.2600K+ installsUpdated 4 weeks ago

View Compare

WP Mail Logging

4.7300K+ installsUpdated 1 month ago

View Compare

Spam protection, Honeypot, Anti-Spam by…

4.8200K+ installsUpdated 2 days ago

View Compare

ReCaptcha v2 for Contact Form 7

5200K+ installsUpdated 11 months ago

View Compare

View all spam plugins →

Frequently Asked Questions

Contributors

atmosphear

Plugin data sourced from WordPress.org. Analysis and metrics by PluginSift.

HTTP/1.1 403 Forbidden header on a failed login

Send an "HTTP/1.1 403 Forbidden" header on a failed login instead of the default "HTTP/1.1 200 OK"

By atmosphear·Spam·Free

5(2 reviews)

·200 active installs·Updated 10 years ago

Download Visit Homepage Compare

5/52 reviews

200active installs

2.1K+total downloads

10 yearssince 2016

Overview

The purpose of this plugin is to provide a way to allow external tools like fail2ban to get a message of a failed login e.g. to prevent a brute-force attack on a firewall level.

For the public domain.

Uses PHP5.3 anonymous functions and will not work on earlier versions of PHP

Read full description on WordPress.org