Brute force attempts have gone through the roof

Viewing 13 replies - 1 through 13 (of 13 total)
  • Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi did you enable any of the Brute Force features? What features did you enable in the plugin?

    Thread Starter Benniebean

    (@benniebean)

    Yes I have the cookie option set, I also have the honey pot set, 5g blacklist set, internet bots set, hot links and additional rules set and login lockdown set.

    Since installing this plugin things have gone crazy and there has been a couple of hundred attempts today. The cookie option is just not keeping people out.

    Thanks

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Do you also have the following enabled Enable Pingback Protection: ?

    The above can be found under Firewall -> Basic Firewall Rules tab.

    Thread Starter Benniebean

    (@benniebean)

    I do. Thanks

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Can you check the file permissions? Make sure they are all correct? Can you also check the log file?

    Plugin Contributor wpsolutions

    (@wpsolutions)

    Since I have installed this plugin brute force attempts have gone through the roof and I have gone from say 10 attempts a day to several hundred in one afternoon.

    What figures are you quoting this on?
    Could it be that before installing this plugin you were probably still getting as many brute force attempts but the only thing which has changed is that you are being notified more due to some of the features in the AOIWPS plugin?

    Thread Starter Benniebean

    (@benniebean)

    File permission are green and ok. What log file do you need? At the min I am getting an attempt every 10 mins or so whereas before this was something like 10 attempts per day. For whatever reason the brute force cookie option whilst appears to be working ok is not preventing access to the login. The login email set up does not work either so it seems to be letting me down on a number of fronts.

    Thread Starter Benniebean

    (@benniebean)

    Also the plugin is not showing any lock outs for ip when this is clearly happening.

    Plugin Contributor wpsolutions

    (@wpsolutions)

    Are you on an nginx server by any chance? If so then the brute force cookie feature won’t work because it relies on .htaccess rules.

    Have you tried the rename login feature instead?

    Thread Starter Benniebean

    (@benniebean)

    No just a standard server. I’ve also tried the rename option and whilst both these features appear to work someone is getting around them with ease. probably best I uninstall and try some different plugins. How would you recommend a full uninstall.

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, please follow these instructions.

    Thank you

    Plugin Contributor mbrsolution

    (@mbrsolution)

    @benniebean is your issue resolved?

    Thread Starter Benniebean

    (@benniebean)

    Hi, yep I uninstalled the plugin and have gone to a country block and that has resolved the hack attempts. Many thanks.

Viewing 13 replies - 1 through 13 (of 13 total)
  • The topic ‘Brute force attempts have gone through the roof’ is closed to new replies.