Ongoing brute force effort

  • Resolved jgold723

    (@jgold723)


    6 years, 9 months ago

    Through my notifications I’m seeing repeated attempts to sign in to one of my sites using variations of the “admin” username. Offending IPs are being blocked by Wordfence for the 1 hour set in my options. Wordfence seems to be doing its job, but should I do anything else to try and thwart this? Make the IP block longer or permanent?

Viewing 2 replies - 1 through 2 (of 2 total)

  • I found that blocking for 2 days worked better for my website. Also, if the same User Agent is using many different IPs to probe your site, you may want to block the specific User Agent, if it is indeed specific to this hacker.

    Hi @jgold723

    I second that “Wordfence is doing its job”, you don’t need to do anything else at the moment. Check this link if you want to learn more about brute force attacks and how they work, also check our guide to know how to configure brute force attacks protection settings.

    Thanks.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Ongoing brute force effort’ is closed to new replies.