None of the blogs on this site have a META section. There is NO registration allowed but still I get spammers calling the wp-login page. I protected with a .htaccess rule but apparently the software used by these sad morons is so stupid that it can’t understand an authorisation issue and just goes into an endless loop hammering the server.
So I’ve turned on Fail2ban’s wp-login monitor and its working well :
So please take note – calling the wp-login page on this site too often will simply block you…..