Eve

Hi Hans-Gerd,

That’s too bad the error logs didn’t help. Have you tried deactivating the other plugins to see if there is a conflict? Is everything in your installation updated?

If you delete the plugin and reinstall, the settings should still be in the wp-content/uploads/sucuri directory.

Kind regards,
Eve

• This reply was modified 8 years, 2 months ago by Eve.

Hi Hans-Gerd,

Have you checked your error log to get more information? I haven’t been able to reproduce the issue.

Kind regards,
Eve

Hi newtechweb,

I suggest checking your access logs to find out where the login attempts are really being made. You can limit access to the login with IP restrictions in .htaccess. The login attempts might also be coming through access of your xmlrpc.php file. Restricting access to xmlrpc.php can be a good idea. However, restrictions can break some plugins, like JetPack. So, be sure to test that.

Another option is using a firewall to block system.multicall requests.

The plugin’s login alert won’t give you the URL.

Regards,
Eve

Hi dfeagin,

Hackers use xmlrpc file to make large numbers of login attempts with a single request. Restricting access to xmlrpc.php can be a good idea, however, restrictions can break some plugins, like JetPack. So, be sure to test that.

Another option is using a firewall to block system.multicall requests.

Regards,
Eve

Hi there,

You’ll need to check the server logs to find out the cause of that error. It can be many things.

Thanks!
Eve

Hey there,

This is a really old post, we noticed that it hadn’t been addressed. Apologies!

I have not seen this behavior. Can you confirm that you’re using the latest version of the plugin 1.8.3? Found in the codex:

https://www.ads-software.com/plugins/sucuri-scanner/

Thanks!
Eve

Hey Chris,

Thanks so much for the update! The potential issue with PHP 5.3 is noted. I’ll check that out.

Cheers!
Eve

• This reply was modified 8 years, 4 months ago by Eve.

Hi there,

Have you checked your alert settings? You can limit the kind and number of alerts.

Sucuri Security -> Settings -> Alerts

Eve

Hi there,

I’ve been unable to replicate the problem. Can you please test your API communications, particularly with https://sitecheck.sucuri.net/?

Sucuri -> Settings -> API Service at the bottom of the page you’ll find the API Communication Protocol section. Just tick https://sitecheck.sucuri.net/ and click on Test API Calls.

Thanks!
Eve

Hi there,

No, sorry, we only focus on websites. There are many good options available for your computer security; we can’t make a specific recommendation, though, sorry.

Thanks!
Eve

Hi there,

I’m glad you figured it out. For everyone else. Failed Password Collection can be enabled in the general settings. You should understand the risks in enabling this feature. From the plugin dashboard:

Please do not enable this option unless you understand the consequences. The plugin monitors all the user login attempts, when an user authentication succeeds it logs the event and sends an alert to the administrator if the option is enabled. Same thing happens for failed login attempts with two extra features: you can opt to send a summary of all the failed logins occured during the same hour and/or force the plugin to collect the password used in every authentication attempt to see if the attackers are getting close to your real password or not.

You must be careful with this option as it will also log the attempts that you (as a legitimate user) send, if by mistake you mistype a character in the password the plugin will log this and it will be sent to the Sucuri servers. If a malicious user gets access to your API key or your security logs he/she will know the mistyped password and will use it to improve his attacks against your website.

Thanks!
Eve

Hi there,

You can change the default PHP settings. I recommend checking with your host about increasing the max_execution_time.

This might be helpful:
https://php.net/manual/en/info.configuration.php.

Thanks!
Eve

Hi there,

Sorry about the trouble. But we wouldn’t be able to diagnose what happened to here, only to say that it’s not related to us. We don’t run any checks on your computer.

A big part of website security is making sure your home computing environment is safe with a good security software.

Be safe,
Eve

Hi there,

You can’t use the Sucuri plugin to block by IP (our Firewall can do this). You should be able to block IPs in your .htaccess. If you’re having trouble with that, you might want to contact your host for help.

Eve

Hi there,

In a multisite installation, the plugin can only be configured in the Network admin dashboard (main site).

I hope this helps!

Eve