[lug] web site advice needed

George S. georges at mhsoftware.com
Thu Sep 12 16:24:55 MDT 2013



On 9/12/13 3:50 PM, Jed S. Baer wrote:
> On Thu, 12 Sep 2013 09:59:27 -0600
> George S. wrote:
>
>> After I figured out what the problem was, I secured the
>> wp-login.php page with an IP Address restriction. Another way would
>> have been to require basic authentication for the page and wp-admin.
>> This week, I'm seeing 1700 attempts for this hack.  If I didn't have
>> the page secured, I'm sure I would be seeing 10's or 100's of thousands.
>>
>> If you're running wordpress, you should look at your logs for post
>> requests to wp-login.php.
> Doesn't the bad-behavior plugin help this quite a bit? Is it still even
> available?
The Limit Login Attempts Plugin looks promising. Really, I was just so 
desperate to get it stopped that the IP filtering via Apache was fast 
and easy.


> _______________________________________________
> Web Page:  http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> Join us on IRC: irc.hackingsociety.org port=6667 channel=#hackingsociety
>

-- 
George Sexton
MH Software, Inc.
303 438-9585
http://www.mhsoftware.com/



More information about the LUG mailing list