You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
On a newish site I noticed thousands of requests to wp-login.php from the same IP address. The only thing this site was trying to do was login, using a dictionary lookup for passwords.
Blocking the IP reduced the number of requests to the site to a manageable level.
I realised that it would be easy to detect the IPs that should be blocked simply on the type of requests they perform.
Requirement
Routine to analyse the daily summary report to find IPs that should be blocked.
Some automated routine to be proactive rather than reactive.
I imagine Jetpack's Protect does something similar. And maybe Wordfence as well.
The text was updated successfully, but these errors were encountered:
On a newish site I noticed thousands of requests to wp-login.php from the same IP address. The only thing this site was trying to do was login, using a dictionary lookup for passwords.
Blocking the IP reduced the number of requests to the site to a manageable level.
I realised that it would be easy to detect the IPs that should be blocked simply on the type of requests they perform.
Requirement
I imagine Jetpack's Protect does something similar. And maybe Wordfence as well.
The text was updated successfully, but these errors were encountered: