ConfigServer Community Forum

Peer support forums for ConfigServer Scripts
https://mail.forum.configserver.com/

how to block wordpress login attack

https://mail.forum.configserver.com/viewtopic.php?t=8881

Page 1 of 1

how to block wordpress login attack

Posted: 30 Jul 2015, 21:07
by hansheld
Hello, I am new to ConfigServer. My DirectAdmin reports many Wordpress login attacks (threshold > 50), but ConfigServer Firewall seems not to block these IP numbers. How to arrange that?
Thanks, Hans

Re: how to block wordpress login attack

Posted: 31 Jul 2015, 16:19
by giuga
Hi,

I suggest you use something like iThemes Security for wordpress. That will block the fake login attempts.

Also I suggest you use https://github.com/gabrieliuga/stop-xml ... attack.php to block out xmlrpc.php exploit which can cause a high server load. This could be blocked in CSF but might also make it so that it blocks legit connections afterwards.

Hope this helps.

Cheers,
Gabi
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited