Repeated attempts to log in to admin

  • Resolved haveonelikethis

    (@haveonelikethis)


    9 years, 11 months ago

    Hi
    I am using the latest free wordfence and it is doing all that I would want it to do – super protection. But for the past week or so I have been inundated with repeated attempts to log in as admin or sometimes user by numerous itterations of for example 78-7-3-214-static.albacom.net . The wordfence stops all these as I have been canny enougth to use a more complicated version of user id for admin. So far all well and good as the scum have been blocked. What I am worried about is what effect is this having on the server and what load is being placed on the system as this seems like a DDOS attack. Is there any way of blocking all traffic from the base address ie all traffic from albacom.net. There seem to be only about three of these domains that must have been hacked.
    Sorry if this is long but I am fed up to the back teeth of this type of attack.
    Colin

    https://www.ads-software.com/plugins/wordfence/

Viewing 6 replies - 76 through 81 (of 81 total)

  • The amount of attacks since I installed the captcha plugin have been reduced, however, I’m still receiving Wordfence notifications.

    Today I added .htaccess password protection to /wp-admin/.
    In case you decide to implement this as well, remember to add the the following lines to your /wp-admin/.htaccess file to avoid regular visitors on the public page to see a login window:

    <Files admin-ajax.php>
    Order allow,deny
    Allow from all
    Satisfy any
    </Files>

    Will keep monitoring and update the thread tomorrow…

    i wrote a small program for those who have WP fail2ban installed.
    It collects the needed data for sending it to the ISP.

    Im doing this every month with the three most spamming ISP.

    https://github.com/Herschdorfer/jAbuseReport

    gordonbarker

    (@gordonbarker)

    Have had the same issues too many hacking attempts goes on all day and night. The biggest problem in my opinion is the wp_login.php that all the hackers know very well and is such an easy page to target. WordPress should be looking at allowing webmasters to change the name of this page so hackers would not even be able to discover it?
    Regards
    https://www.epnet.co.za

    Plugin Author WFMattR

    (@wfmattr)

    @gordonbarker: Thanks for the input. We have an open feature request (reference number FB567) under consideration for a future version of Wordfence, to allow changing the name of wp-login.php.

    -Matt R

    gordonbarker

    (@gordonbarker)

    Many thanks Matt,
    Wonderful please can you notify once completed?
    Best wishes
    Gordon

    Plugin Author WFMattR

    (@wfmattr)

    I will try, but we get a lot of requests on this forum, and I may miss replying to some of the posts about it.

    Just in case, though — any new features are mentioned in the changelog that you can see by clicking the link to view details from the plugin update page within your site, or on the Changelog tab of our plugin page here:
    https://www.ads-software.com/plugins/wordfence/changelog/

    -Matt R

Viewing 6 replies - 76 through 81 (of 81 total)
  • The topic ‘Repeated attempts to log in to admin’ is closed to new replies.

Tags