Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: Wordpress - Attack

  1. #1
    Silver Member workshop's Avatar
    Join Date
    Mar 2013
    Location
    Knysna
    Posts
    220
    Thanks
    9
    Thanked 12 Times in 9 Posts

    Wordpress - Attack

    My Wordpress login pages are being probed by a bot which is using multiple IP addresses to circumvent the Login Lock plug-in I use to keep the furry little creatures out. This literally results in thousands of Lock Out alerts. Is anyone else experiencing the same problem?

  2. #2
    Gold Member Chrisjan B's Avatar
    Join Date
    Dec 2007
    Location
    GEORGE
    Posts
    610
    Thanks
    234
    Thanked 72 Times in 65 Posts
    Not yet, fortunately....

    Sent from my ASUS Transformer Pad TF300TG using Tapatalk 4 Beta

    BOVER Technologies
    - computer sales and TeamViewer support
    Elmine Botha Freelance Photographer - Photographer/ Videographer

  3. #3
    Silver Member workshop's Avatar
    Join Date
    Mar 2013
    Location
    Knysna
    Posts
    220
    Thanks
    9
    Thanked 12 Times in 9 Posts
    Anyone else using Log In lock and experiencing the same thing?

  4. #4
    Full Member
    Join Date
    Feb 2013
    Location
    Midrand
    Posts
    40
    Thanks
    1
    Thanked 4 Times in 3 Posts
    Try WordPress Firewall 2 or wpOptimix

  5. #5
    Silver Member workshop's Avatar
    Join Date
    Mar 2013
    Location
    Knysna
    Posts
    220
    Thanks
    9
    Thanked 12 Times in 9 Posts
    thx
    will do

    Log in Lock keeps them out
    But the bot just switchs to a new IP
    And the alerts flow like a burst pipe

  6. #6
    Full Member
    Join Date
    May 2013
    Location
    In Your Brain.
    Posts
    70
    Thanks
    11
    Thanked 10 Times in 10 Posts
    Change your Username if its ADMIN. Its a default hacking invitation.
    Ensure you've installed Bulletproof security and scan a sucuri.net malware check just to be on safer side.
    Have a strong password for your site.

    Too stop and so called random attack for your site you can hide the structure of your WordPress. Google HIDE MY Word-press plugin (Paid) and you'll be able to get apart from those hackers.
    It will hide all things which makes your site look its based on WordPress Platform.

    WIZ
    Social Guru Live - Buy Real Twitter Followers - Best niche twitter Followers

  7. #7
    Silver Member workshop's Avatar
    Join Date
    Mar 2013
    Location
    Knysna
    Posts
    220
    Thanks
    9
    Thanked 12 Times in 9 Posts
    Quote Originally Posted by Wiz View Post
    Google HIDE MY Word-press plugin (Paid) and you'll be able to get apart from those hackers.
    It will hide all things which makes your site look its based on WordPress Platform.

    WIZ
    How does it work? How do the trolls ID the sites. Wordpress attracts both hack attacks and even more irritating are the spammers

  8. #8
    Site Caretaker Dave A's Avatar
    Join Date
    May 2006
    Location
    Durban, South Africa
    Posts
    20,979
    Thanks
    3,055
    Thanked 2,462 Times in 2,067 Posts
    Blog Entries
    12
    Quote Originally Posted by workshop View Post
    and even more irritating are the spammers
    Have you tried Akismet?
    The trouble with opportunity is it normally comes dressed up as work.

  9. #9
    Silver Member workshop's Avatar
    Join Date
    Mar 2013
    Location
    Knysna
    Posts
    220
    Thanks
    9
    Thanked 12 Times in 9 Posts
    Couldn't work without it. But they still come thick and fast.
    When you get on the list there is only one thing to do and that is to close the Comments
    And reopen them when you think no one is looking

  10. #10
    Site Caretaker Dave A's Avatar
    Join Date
    May 2006
    Location
    Durban, South Africa
    Posts
    20,979
    Thanks
    3,055
    Thanked 2,462 Times in 2,067 Posts
    Blog Entries
    12
    Maybe add the Stop Spammer Registrations plug-in too.
    You might have to tweak the default settings some to reduce false positives:
    1. A 10 day history is enough - I think it defaults to 30 days nowadays, which is pretty rough, especially given our SA shared IP situation.
    2. I was getting too many false positives on the username check, so I give that one a skip as well.
    The trouble with opportunity is it normally comes dressed up as work.

  11. Thanks given for this post:

    workshop (27-Jul-13)

Page 1 of 2 12 LastLast

Similar Threads

  1. EasyBlogger for Joomla - The death of Wordpress
    By Mark Atkinson in forum Technology Forum
    Replies: 10
    Last Post: 14-May-14, 07:25 AM
  2. Wordpress watermark
    By Faan in forum Business Online Forum
    Replies: 2
    Last Post: 13-May-13, 12:50 PM
  3. WordPress - Help...
    By adrianh in forum Technology Forum
    Replies: 12
    Last Post: 19-Dec-11, 08:07 PM
  4. Joomla vs Wordpress for business website
    By Cream in forum Business Online Forum
    Replies: 12
    Last Post: 31-Mar-11, 03:28 PM
  5. Wordpress
    By adrianh in forum Technology Forum
    Replies: 3
    Last Post: 29-Oct-10, 01:04 PM

Did you like this article? Share it with your favourite social network.

Did you like this article? Share it with your favourite social network.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •