ConfigServer Community Forum

Hi there,
We have a dedicated IP with SingleHop, and need help in order to: a) figure out if CSF can help in our case; and b) learn how to use it myself.
(SingleHop is asking for an additional $70 a month to help with managed hosting services such as using CSF.)

Here's the situation:
1) we have a wordpress install with Sucuri plugin which reports failed login attempts with the username 'admin'.
2) according to the logs, there are different IPs brute-force-attacking our site -- every few seconds. (50 per 7 minutes)
3) we have already changed the login/admin url away from the default (which was wp-admin), but it has not seemed to curb the number of attempted logins from various IPs whatsoever.

My questions:
1) why has changing the login/admin url not halted the brute force attacks?
1) can CSF help; and if so, what would it do to curb the ?
2) if CSF can help in our case, is there a simple step-by-step guide for a newbie such as myself, to use it?

I would be glad to make a modest donation if this solution proves effective.
I cannot however, afford another $70/month.

Cheers!

Following up... any advice?
Not sure what to do, our server is getting pretty heavily brute force attacked.

CSF + ModSecurity can help you out.
ModSecurity can detect all this attacks and CSF will block the IPs that are attacking your server.
You will need to buy a year subscription for modsecurity rules that are updated a few times a day.