justwander

@threadi,
I am using a child of the Storybook theme.

The absolute path did not work, but the alternate fonts works really well.

I did add the quote mark I missed in the @font-face call:

@font-face {
font-family: "sitetitle";
src: url("../Fonts/Raleway-Black.ttf");
} 

Thanks @wfadam,
Most of what you suggested I already do.

what user names are they trying to use?
Right now [login]. Over time I collected a list of them and they are all blocked.

`If you are getting hit frequently from the same IP
This attacker hits three or four times from one location then jumps to another. This gives a new set of attempts to login (my limit is two then block).

set up a Custom Pattern block
This I have been doing with some success. I have learned to set blocks with a wide enough net to block bad actors yet not so broad that visitors I want are kept out.

go to your Tools > Live Traffic and block the IP directly from there
I have the blocking page up in another tab so I can refer to live traffic and still be able to add notes to the block entry.

I just wish the block page provided a way to block when IP equals host.

Also, I know I saw it but can’t remember, where is the place where you can allow only one IP (mine) to access the site. Maybe if they can’t access login at all they will give up.

Thanks again.

@wfadam,
Thanks for helping out.

This time around this they are trying to login. I have a very low reject number set since I am the only one logging in. So it seems they are just going through computers all over the world trying to hit the jackpot. (Mostly from third world countries.) They are going to be at it for a long time since my passwork is over 22 characters.

My worry is in the middle of everything they will break in through another page. Maybe I worry too much but I think better safe than sorry.

I wish there was a way to block a user using a matching host and IP. Even if that block is not left active permanently it could discourage someone and get them to move on.

Lastly, could I put a temporary block on any IP that is not mine? I thought I remembered seeing that, I just can’t remember where.

@wfgerald,

Thanks for the help.

Today the attacks are coming like this:

wp2019.sql
wpmssql.sql

Am I understanding this right to say that these attacks are trying to get into backups stored with program files and the :80 attacks are trying to get in through the database?

If so how does a strong password help a :80 attack.

I’m not trying to be obtuse. Just trying to learn as much as I can so that in the future I can recognize low level stuff and only bother you when things get really really hairy. ??

@wfgerald,

My password length is in the neighborhood of 26 to 30 characters. I it is a sentence that means something only to me and I have numbers and symbols taking the place of certain words. Can’t get those monkeys typing Shakspeare out of my head.

Thanks for all the work you do. I’m going to call your boss and suggest a raise.

@wfdave,

Thanks for the help.

@wfdave,

The problem I am seeing is that it looks like the attacker is moving to a different computer. The same attack is coming from all over. So they don’t need to repeat from the same location.

This is a pattern that seemes to have become popular lately.

I will add media-admin.php to the firewall list. The name makes it appear that they are trying to get in through a real WordPress file.

@wfdave,

Thanks for the info.

@wfgerald,

I had the little varmint blocked before I posted. Just wanted to be sure there was not more that needed to be done.

Thank you for taking the time to respond. Much appreciated.

Hello,

I just opened InDesign with an old file and discovered something that may help. I am using an older version so I’m not sure the current version is the same. Goto…

File > Cross-media Export > XHTML / Dreamweaver

Unfortunately, the file I saved did not have much in the way of formatting except for <p> and <div>. The bolding, italics etc is not there because the InDesign file has no css with it. If you will be doing this often you can build a basic <style> file and use it for many indd files.

Hope this helps.

@sterndata, thanks for the info.

The funny thing about this is that I found the “robust” description in several places (one of them my ISP).

Since Google wants to see certificates now, I am thinking about going with the free one one made available by my ISP and upgrading when I add e-commerce to my site.

@t-p
I have the certificate. Just didn’t know how to add it in.

Looks like I’ll be reading a while. Thanks much.

@contentiskey,

Not sure what a separate category is. I’m still new at this.

What I am looking for is a News page that is separate from the blog and would be it’s own entity. Could that be done as a category or would it have to be totally separate?

@wfalaa,

Thank you very much.

@mountainguy2
I’m not sure what you mean, not much of a geek brain.

The first entry is a page someone tried to access.

The second is where it led.

From what you are saying this is not a real page, just something to retrieve information.

It all looks like so much gobbledygook to me. I am looking into “Disable Embeds” right now.