betway zambia online live sports betting & casino games.Claim Your Free 999 Pesos Bonus Today

How Accurate is Rate Limiting?

dimal — Sun, 11 Feb 2024 12:30:28 +0000

Hi,

I have done some extensive tests to see if the NUMBERS set in Rate Limiting (with Block) are actually accurate and how accurate.

No caching of anykind, page or object.

The test i did was for 404 and also human/bots for 15 per minute.

The results are extemely unstable. Sometimes the Block happened at 16 visits, usually between 24-30 and i saw also a no-block after 40 or 50 per minute.

Any explanation on that?

Thanks

Recommended Rate Limiting Settings?

consultant1027 — Fri, 02 Feb 2024 19:31:49 +0000

For the first time in 10 years I had an attack on my WordPress site which is pretty PHP script intensive mainly because it runs on the Divi Framework. The IP wasn’t on any of the blocklists Ioad on my configserver firewall. I was surprised Wordfence didn’t block it due to abnormally high page requests. Come to find out, by default the Rate Limiting feature settings are set to UNLIMITED!

I realize these settings could potentially block legit scrapers. I also realize other than the IP addresses for well known scrapers like Google, attackers could spoof their user agent to look like a scraping bot instead of a user.

The sites I run are for small businesses so they might have at most 10 or 15 visitors on them at a time. Can anyone recommend settings for the Rate Limiting feature that will prevent these Application Layer Denial of Service attacks on WordPress without prematurely blocking legit scraping traffic?

Whilst Normal Users from Rate Limiting

you2buddy — Thu, 02 Nov 2023 23:36:15 +0000

Am using this plugin to rate limit Pinterest crawlers from DDosing my site with a lot of requests , is there a why to Whilst Normal Users from Rate Limiting ???

Licensed version of WF won’t scan when rate limiting is enabled

sgbabq — Fri, 26 May 2023 23:55:34 +0000

I’ve had a licensed version of WF installed for about a year or so and have had no issues. Today I got a message there was an issue. I determined that the issue is coming from the WF plugin itself. I disabled all other plugins and nothing changed. So, I started changing WF settings and finally got it to run when I disabled the rate limiting option. I have tried altering the settings of each of the sub-options under rate limiting, but it doesn’t fix the problem. The entire rate limiting option must be turned off completely. It looks like your plugin is stopping itself from running.
Help.

Security suggestions and feature that need to be added future updates

JediMax — Mon, 12 Sep 2022 06:47:51 +0000

If the dev can work on this it will be nice.

Rate limiting something like this
Image from Wordfence Security
1. https://pasteboard.co/6n2vp69vdqMk.jpg
2. Allow us to block ASN level https://ipinfo.io/countries/gb
3. user agent blocking https://www.whatismybrowser.com/detect/what-is-my-user-agent/

Your site is unable to reach www.ads-software.com

jasonds212 — Mon, 06 Jun 2022 07:43:51 +0000

Hi There. I’ve recently recieved the aforementioned error on all sites on one of our servers( Your site is unable to reach www.ads-software.com at 198.143.164.251, and returned the error: cURL error 28: Connection timed out after 10001 milliseconds). We’ve disablesd all plugins and gone through pretty much everything I could see on the forums. I’ve spoken to our Hosts and they believe that www.ads-software.com may be rate limiting us. Is there a way to see if this is the case?

rate limiting per hour and per day

acoolcoder — Fri, 11 Feb 2022 04:37:45 +0000

Can you add rate following rate limiting features:
max number of pages per hour
max number of pages per day

Rate Limiting on Coupons

Dinesh Yadav (dineshinau) — Thu, 30 Dec 2021 05:40:52 +0000

Hi there,

Greeting of the day!!

I have a query regarding applying coupon requests. Why there is no rate limiting implemented on the apply coupon request? It seems that a store could be a victim of a DoS or Dictionary attack.

API rate limiting is preventing access to services

Ian Pegg — Thu, 19 Nov 2020 11:16:15 +0000

Hello,

I just logged in to a site I haven’t checked in a while to find that I have a huge backlog of tasks in the queue:

101 LQIP requests
12 Critical CSS requests – last successful request was back in June!

Cron is running fine for other tasks, so that’s not the culprit. When I try to force cron manually I get a huge list of ‘d/usage’ errors returned:

Cloud Error: Please try after 2m 29s for service d/usage

Logging into QUIC.cloud confirms that my API usage is at zero across all services this month for this domain. My website evidently hasn’t been using the API, so why is it being rate-limited?

Image optimisation requests are also being limited/refused, again, in spite of the fact my API usage is currently at zero.

How do you identify hosts when applying rate limiting? Is it only by referring IP or by domain? I can imagine that if you are only using the server IP then this is going to rate limit users like me unfairly – greedy neighbours on the same server are going to cause the IP to get limited all the time, which is unfair.

Can we just go back to how things used to be? I much preferred using my own server to generate CCSS etc. It just worked, whereas this new system that externalises these processes onto your servers via API has consistently failed to work ever since it was introduced.

Best wishes

cURL error 28

445887485124 — Thu, 23 Jul 2020 14:10:24 +0000

Hello. I got error message in site health by yoast seo plugin that says: cURL error 28 operation timed out after 5000 miliseconds with 0 bytes received (http_request_failed)
Is it because crawler was blocked. i have activated rate limiting, is it reason i got that message? Will it affect google crawler? i have set verified google crawler not to be rate-limited.
error message by yoast seo plugin (screenshot)
Wordfence options i’ve set (screenshot)