Suggestion: additional counting periods for rate limiting

  • Resolved p15h

    (@prestonwordsworth)


    1 year, 6 months ago

    Dear Peter

    Rate limiting has been the killer feature of this plugin! That said, some malicious actors seem to have by now figured out how to circumvent detection by spreading out numerous 404 requests over the span of an hour yet staying well below the per 60 seconds (or under) threshold that’d trigger WF.

    So it seems to me that the next step WF could take in adapting to the changing patterns of attack is probably to add an additional layer of blocking logic that’s based on counting periods of, say, per 15 minutes and upwards granularity (while keeping intact the original blocking logic for 60 seconds or under, which is also indispensable).

Viewing 1 replies (of 1 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @prestonwordsworth, thanks for your suggestion.

    As with all development requests, I can’t provide feedback on whether an idea may be considered for the plugin or when it may be included. However, all ideas from our customers are put forward to the development team and considered – so I’ve put yours forward here and your observations on why it may be now useful for you and others based on behavior you’ve seen.

    I’m glad to hear you’re enjoying Wordfence and appreciate your input!
    Peter.

Viewing 1 replies (of 1 total)
  • The topic ‘Suggestion: additional counting periods for rate limiting’ is closed to new replies.