No apparent change

  • I’m on WordPress multisite with mapped domains. I have WordFence running and set to alert on failed logins and block additional attempts after a small number of failures from the same IP.

    I set this plugin on two sites. This morning, emails from WordFence confirm those sites were hit by successive attempts from a bot network along with the other sites in the network.

    The theory sounds good, but in fact, if it works like it is supposed to, I believe it should have kept the bots from attempting to login at all. It did not.

    Hopefully there will be a better version or someone else who finds a fix for botnets. So far, this doesn’t seem to be it.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author webvitaly

    (@webvitaly)

    Can you share a link to your site?
    You may send the link privately using feedback form.

    Plugin Author webvitaly

    (@webvitaly)

    I believe it should have kept the bots from attempting to login at all.

    Yes, it should stop some part of bots, which rely on special response from site after login request.

    I have WordFence running and set to alert on failed logins and block additional attempts after a small number of failures from the same IP.

    By the way, WordFence let to try bots to login from one IP. And Security-protection plugin blocks all bot’s login tries and Security-protection makes this operation more easily, because it does not read or write nothing to database or pings other services or etc. And also Security-protection does not affect users at all with login counter or etc.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘No apparent change’ is closed to new replies.