Ticket #871 (new maintenance)
Opened 14 months ago
Brute Force Attacks Against WordPress Sites
| Reported by: | chris | Owned by: | chris |
|---|---|---|---|
| Priority: | major | Milestone: | Maintenance |
| Component: | Parrot server | Keywords: | |
| Cc: | ade, sam | Estimated Number of Hours: | 0.0 |
| Add Hours to Ticket: | 0 | Billable?: | yes |
| Total Hours: | 0.25 |
Description
Today there have been 53,932 attempts to login to the TTT web site on ParrotServer all from the same IP address:
grep POST /home/ttt/logs/access.log | grep wp-login.php | grep 217.174.240.254 | wc -l 53932
I noticed this due the higher than usual load it was generating.
Would it be OK to spend an hour or two installing the WP fail2ban plugin on all the sites on the server?
Some more background on this issue:
Change History
Note: See
TracTickets for help on using
tickets.
