So, since there was nothing specific, I tried turning off Rate Limiting and Advanced Blocking (apparently they’re connected). The error happened on my first attempt to see my main page, but something is blocking my site aliases (not trying to log in, just see the main domain on entering the alias address.)

Turning off Advanced Blocking didn’t do anything. I’m still getting the same error. How can that even happen? Please offer suggestions. Thanks.

I want to block these Referrer Spam

https://pastebin.com/Rx8JQCAN

Problem 1: there is some lenght limitation, so not everything is pasted
Problem 2: can’t edit already existing rules, I have to delete them and add again with modifications

Solution to Problem 1 – can you please remove limitation, or allow importing lists
Solution to Problem 2 – can you please add EDIT function for already existing rules?

Question: is there some simple way to prevent duplicate entries?

thank you

https://www.ads-software.com/plugins/wordfence/

I want to block these Referrer Spam

*ilovevitaly*,*econom.co,*savetubevideo.com,*kambasoft.com,*buttons-for-website.com,*best-seo-solution.com,*best-seo-offer.com,*darodar.com,*get-free-social-traffic.com,*7makemoneyonline.com,*bestwebsitesawards.com,*BlackHatWorth.com,*buttons-for-website.com,*cenoval.ru,*hulfingtonpost.com,*humanorightswatch.org,*myftpupload.com,*o-o-6-o-o.com,*priceg.com,*semalt.com,*simple-share-buttons.com,*free-share-buttons.com,*fix-website-errors.com,*keywords-monitoring-success.com,*free-video-tool.com,*ghostvisitor.com,*magicdiet.gq

Problem 1: there is some lenght limitation, so not everything it taken
Problem 2: can’t edit already existing rules, I have to delete them and add again with modifications

Question 1: how to import list of domains to be blocked as referrer spam
Question 2: is there some simple way to prevent duplicate entries

thank you

https://www.ads-software.com/plugins/wordfence/

I have setup a pattern to trap invalid browser version numbers.

A few hackers are coming through showing “Browser: [browsername] version 0.0 running on [os]”.

I want to stop “version 0.0”.

I have tried using the following patterns for “Browser Pattern” blocking:

*version 0.0*
*version 0.0 *

Neither register a block and yet I have in live traffic browsers that should be trapped by this eg Chrome version 0.0 running on Win7.

Ideas?

https://www.ads-software.com/plugins/wordfence/

I’m under attack in this moment and the hacker seems to use various proxies. That’s why I decided to password protect the folder wp-admin from cPanel. So I made the login link unavailable. But even so, Wordfence continues to send user locked out notifications. Is that normal?
On the other hand, Advanced Blocking doesn’t work. I activated Live Traffic but with no effects.

https://www.ads-software.com/plugins/wordfence/

Any solution?

Thanks

https://www.ads-software.com/plugins/wordfence/

I really get weary from copying and pasting IP ranges for every site.

Will importing/exporting advanced blocking IP ranges be something you might implement in the future?

https://www.ads-software.com/plugins/wordfence/

108.177.146.000 – 108.177.146.999

There’s a msg in green to the right of the range that says ‘Valid: 1000 addresses in range’

Also, is there a way to immediately block an IP that tries to login with a non-existent username?

https://www.ads-software.com/plugins/wordfence/

Today I logged in and discovered that all of them disappeared: the “Current list of ranges and patterns you’ve blocked” on the “Advanced Blocking” page is empty.

How could it happen?

I am the only “administrator” role user.
WP, all plugins and themes are up-to-date.
Wordfence never reported any suspicious activity.
I did get a handful spam user registrations in the last week, all by default are in “subscriber” role.

— EDIT: I just added a range to that empty list and – lo and behold! – all lost ranges from two days ago reappeared on that page.

Then re-loaded (F5) the “Advanced Blocking” page and the list is empty again. This time, the described in the above paragraph trick of adding another range does not work.

I access the admin area via SSL, if that matters.

https://www.ads-software.com/plugins/wordfence/

as it seems blocking certain ip ranges is not enough – there are just too many out there… but so far i could identify a certain behavior that starts with a scanner bot to find the login page, followed by a slow brute force attack that comes every european night.

i would like to block soem of those (partly commercial) bots and some console browsers that i find in the live traffic, always before the next attack comes.

if i go to the advanced blocking:
and type in: lynx (or) *lynx (or) *lynx* (or) lynx*
those blocking schemes don’t show any blocked hits
and i see that specific browser in the live traffic still showing up.

am i doing something wrong, or do i need to type in the grey line below the user-agent too?

best regards and thank you,

you have made a great piece of work here…

https://www.ads-software.com/plugins/wordfence/