Site Lockout / Username: Admin

  • Resolved kruddock

    (@kruddock)


    3 years, 6 months ago

    Last night we were bombarded with over 250 attempts of people attempting to login using the username of admin, which we do not have. My question is that I have a rule of thumb that if I find a set of 2 or i/p address attempting this that I block the entire range. ie. 202.134.160.212 and 202.135.21.144 attempted to login with admin credentials. I setup a blacklist of 202.*.*.* My question is why do I still receive notifications of people trying to gain access using admin from these set of blacklisted i/p addresses. Are they actually getting access to wp-login.php? They shouldn’t be able to right?

    Thanks for taking the time to answer this as I’m sure others on here have the same question.

Viewing 1 replies (of 1 total)
  • Plugin Author gioni

    (@gioni)

    There is nothing to worry about. WP Cerber has two parts that are involved here. The first one blocks requests as it has to. The second one generating alerts and notifications. They work independently. You get those notifications because blocked IP addresses are still trying to get access, not because they can do that.

Viewing 1 replies (of 1 total)
  • The topic ‘Site Lockout / Username: Admin’ is closed to new replies.