777 Super Strike slot.Enjoy Free 888+200 Daily Legal Bonus

Forum Replies Created

Viewing 2 replies - 1 through 2 (of 2 total)

Forum: Plugins
In reply to: [Wordfence Security - Firewall, Malware Scan, and Login Security] Attemtped admin logins

Thread Starter Jeffdvo
(@jeffdvo)

7 years, 1 month ago

Thanks for the response and links wfalaa, I’ve had a good read ??
If I understand correctly, scripts are used with xml-rpc and these by-pass the login screen. Had a quick look at the API components and think it’s scary how much info can be obtained using wp-get.
Thinking it would be a bad idea to allow any IP to access the backend but looking into the email option for logging in, along with password for folders.

Cheers

Forum: Plugins
In reply to: [Wordfence Security - Firewall, Malware Scan, and Login Security] Blocked IPs

Thread Starter Jeffdvo
(@jeffdvo)

10 years ago

Hi Tim, thanks for reply. To clarify, my .htaccess allows access to only one or two IP address so all other IPs should get a 403, regardless of what is being attempted to access in the WP Admin area and that seems to be the case So I’m not too worried about a breach (hope that’s not being complacent)!

I’m trying to get my head round what Wordfence (and Cloudflare) are doing, it seems that .htaccess is working at the server level before traffic gets to the “domain area” and Wordfence monitoring bit. The Cpanel logs are Apache logs (Litespeed in this case). I don’t know if the packets from “other IPs” are getting dropped or just ignored but Wordfence (or Cloudflare) doesn’t seem aware of the traffic being blocked by .htaccess so it doesn’t report the attempted log ins or record the dodgy IPs to enable the sharing of dodgy IPs on the WordPress security network?

I’m a newbie WP Admin on shared hosting, I guess my ignorance will be apparent ?? Previous sites were not WP and were on dedicated server where I could ssh in and have more knowledge of what was happening.

Over the past few weeks I’ve had several brute force attacks and I’m constantly monitoring and blocking offending IPs from with Cpanel and/or .htaccess which doesn’t stop them trying it just fills the logs up with 403’s :-(( I was hoping that Wordfence, Cloudflare and iThemes (installed on a couple of site) would automate the blocking and share the info to other WP sites. Hopefully, you can see why I asked the question “is my use of the .htaccess stopping Wordfence doing it’s job”

Just to be clear, I’m not attacking Wordfence I want to make sure I’m not doing anything that will stop it doing its job.

Cheers

Jeff

Viewing 2 replies - 1 through 2 (of 2 total)