DDOS Attack – Brute Force Doesn't Work

Hopefully this major flaw will get addressed

What major flaw?
Did you raise a support thread before leaving a 1 star rating?
You’ve provided no details regarding which features you had activated…etc.

I think it is a bit unfair to judge this plugin before giving us a chance to investigate your particular situation.

The major flaw is this plugin does not offer a way of automatically detecting and blocking attacks from specific IP Addresses. Am I mistaken? Sure, there is a Blacklist Manager but that is manual and impossible to manage on multiple sites.

@fgd thank you for replying back.

Can you share with us what Firewall and Brute Force features you enabled in the plugin?

As you have notice this plugin has many features that help you protect your website. If you can provide us with more information we can help you secure your website using this plugin.

Regards

Sure, there is a Blacklist Manager but that is manual and impossible to manage on multiple sites

I’m not sure what you mean.
Once you enter the addresses the BL feature is automatic.

wpsolutions: what FGD means is that the Blacklist Manager does not automatically kick in and stop attacking IPs. You have to go in manually and cut-and-paste IPs to it one at a time. This IS impossible when you’re in charge of many sites and/or if you’re getting hit with a lot of spammers. It’s just not gonna happen.

The better part of a year ago, I suggested that a HUGE improvement to this plugin would be adding spammer IPs to the Blacklist automatically. You could set automatic criteria (# of attempted hacks, etc.) and then it would be set and forget. Which, IMHO, is how it should work.

Your plugin has many wonderful features. But making us manually add offending IPs when it could be done automatically means that as admins, we basically have to become doormen. It sorta defeats the whole purpose of automation, insofar as blocking spammers goes.

KSteinmann.
Ok thanks for the clarification and your explanation sounds like a reasonable feature.
We will seriously look at adding some kind of feature of the type you described which automatically blacklists IP addresses based on spammer IPs.

@wpsolutions – that would be great!

I’m glad that helped, and we, the loyal user base, would LOVE to see the “automatic Blacklist” feature implemented. IMHO, that one feature alone would take AIOWPS from not just “merely great” to truly epic!

??

Thanks for listening and (please… we need you) keep up the outstanding work.

Has this feature been implemented?

I’d like to bump the question above?

@beagent in the plugin version 4.0.4, the following feature was added.

Added new feature: Auto Block Spammer IPs. This feature will automatically and permanently block IP addresses which are linked to comment SPAM. (see SPAM Prevention -> Comment SPAM IP Monitoring tab)

Is this what you are referring to?

The above feature addition to the plugin is in respond to @ksteinmann suggestion above.

The better part of a year ago, I suggested that a HUGE improvement to this plugin would be adding spammer IPs to the Blacklist automatically. You could set automatic criteria (# of attempted hacks, etc.) and then it would be set and forget. Which, IMHO, is how it should work.

Let me know if this helps.

Regards