Ticket #871 (new maintenance)
Opened 14 months ago
Brute Force Attacks Against WordPress Sites
| Reported by: | chris | Owned by: | chris |
|---|---|---|---|
| Priority: | major | Milestone: | Maintenance |
| Component: | Parrot server | Keywords: | |
| Cc: | ade, sam | Estimated Number of Hours: | 0h |
| Total Hours: | 15m | Billable?: | yes |
Description ¶
Today there have been 53,932 attempts to login to the TTT web site on ParrotServer all from the same IP address:
grep POST /home/ttt/logs/access.log | grep wp-login.php | grep 217.174.240.254 | wc -l 53932
I noticed this due the higher than usual load it was generating.
Would it be OK to spend an hour or two installing the WP fail2ban plugin on all the sites on the server?
Some more background on this issue:
Note: See
TracTickets for help on using
tickets.
