brute force on wp-login.php

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • mineistaken
    See signature :)
    • Apr 2007
    • 29656

    #1

    brute force on wp-login.php

    What pisses me off is that my stats (awstats etc) gets messed up by them, there is no way to have accurate stats because more hits are from bots than from actual visitors.
    /rant
  • signupdamnit
    Confirmed User
    • Aug 2007
    • 6697

    #2
    http://configserver.com/cp/csf.html and ban them manually if you can't use it to automatically ban them. I think there is a setting to do it.

    You don't like my posts? Put me on ignore or fuck right off. I'll say what I want.

    Comment

    • TrafficRush
      See My SIG!
      • Dec 2003
      • 2099

      #3
      theres a patch for that!
      INTRALINK DSP | SIGNUP TO MAKE BANK NOW
      Skype: Traffic-RushHour | ICQ: 467617514

      Comment

      • mineistaken
        See signature :)
        • Apr 2007
        • 29656

        #4
        Originally posted by TrafficRush
        theres a patch for that!
        If you mean for attacks then I installed wp harden plugin which redirects wp-login.php to home page.

        Now I am looking for patch to see accurate awstats. Because now my numbers are inflated by bots and stats are basically useless, no idea how many of those are real visitors, how many bots.

        Comment

        • nico-t
          emperor of my world
          • Aug 2004
          • 29903

          #5
          same here, seems like almost every wordpress site has this. What are those bots trying to accomplish? No way the passes can be cracked. Seems so useless in my opinion.

          Comment

          • Barry-xlovecam
            It's 42
            • Jun 2010
            • 18083

            #6
            https://illuminatikarate.com/blog/ex...stats-reports/

            It's in the conf file. You can exclude static IP addresses too.

            Comment

            • mineistaken
              See signature :)
              • Apr 2007
              • 29656

              #7
              Originally posted by Barry-xlovecam
              https://illuminatikarate.com/blog/ex...stats-reports/

              It's in the conf file. You can exclude static IP addresses too.
              Very nice, however I have an issue: I installed harden wp plugin so hits to wp-login.php are redirected to home page, meaning that awstats would count them because it won't be backend hit (I assume).
              Its either I prevent attacks (by using harden wp) but have compromised awstats or I do not prevnt attacks but fix awstats using this method

              Comment

              • geirlur
                Confirmed User
                • Aug 2001
                • 2025

                #8
                I had the same problem but I've only allowed my IP to access the loginpage and now I get accurate (and disappointing) stats. It was my host who sat it up so don't ask me how

                btw for blogs I like to use the jetpack stats rather than awstats, it's real time too..
                Tangem Crypto Wallet - 10% OFF with Code: DJC36L

                Comment

                • d-null
                  . . .
                  • Apr 2007
                  • 13724

                  #9
                  it's even worse if you are running forums

                  __________________

                  Looking for a custom TUBE SCRIPT that supports massive traffic, load balancing, billing support, and h264 encoding? Hit up Konrad!
                  Looking for designs for your websites or custom tubesite design? Hit up Zuzana Designs
                  Check out the #1 WordPress SEO Plugin: CyberSEO Suite

                  Comment

                  • PornDiscounts-V
                    Confirmed User
                    • Oct 2003
                    • 5744

                    #10
                    Ban ip's for unsuccessful logins
                    Blog Posts - Contextual Links - Hardlinks on 600+ Blog Network
                    * Handwritten * 180 C Class IPs * Permanent! * Many Niches! * Bulk Discounts! GFYPosts /at/ J2Media.net

                    Comment

                    • SplatterMaster
                      Confirmed User
                      • Jan 2012
                      • 790

                      #11
                      EDIT** Never mind. Looking at the directory structure online wp-login.php is in the root directory.
                      Last edited by SplatterMaster; 05-24-2013, 11:02 AM.

                      Comment

                      • Dankasaur
                        So Fucking Fossilized
                        • Sep 2011
                        • 1432

                        #12
                        Use a more advanced statistics program.

                        Comment

                        • SplatterMaster
                          Confirmed User
                          • Jan 2012
                          • 790

                          #13
                          Here's a trick you can try. I haven't tried it but it looks like it should work.

                          Password protect your admin directory with .htacess and then use .htaccess to filematch that protection to your login.php file.

                          http://www.inmotionhosting.com/suppo...n-php-attempts

                          Comment

                          • EnterpriseVpsSolutions
                            Registered User
                            • May 2013
                            • 97

                            #14
                            Only allow access from your static ips to the admin section deny all else.
                            Enterprise Vps Solutions Internet Solutions Connecting The World
                            Managed Services "Cpanel" - Virtual Private Server (VPS) - Control your own Cloud System - Shared Cpanel Web Hosting on HA
                            www.Enterprisevpssolutions.com Tampa, Florida in Hivelocity Datacenter their Network Providers Global Crossing, Level3, TW Communications, Cogent, Global Telecom and Technology

                            Comment

                            • Fat Panda
                              Porn is Dead. Move along.
                              • Aug 2006
                              • 13296

                              #15
                              yup use htaccess to only allow your ip in admin

                              Comment

                              • fris
                                Too lazy to set a custom title
                                • Aug 2002
                                • 55679

                                #16
                                htaccess block everyone from admin, do signups via the front end and disable redirection to admin after signup
                                Since 1999: 69 Adult Industry awards for Best Hosting Company and professional excellence.

                                Comment

                                • ~Ray
                                  visit hardlinks.org
                                  • Jun 2003
                                  • 18361

                                  #17
                                  what would that htaccess command look like?
                                  Adult Backlinks for Adult Websites - Testimonials Available

                                  Comment

                                  • fris
                                    Too lazy to set a custom title
                                    • Aug 2002
                                    • 55679

                                    #18
                                    Originally posted by ~Ray
                                    what would that htaccess command look like?
                                    Code:
                                    Order Deny,Allow
                                    Deny from all
                                    Allow from xx.xx.xx.xx
                                    file placed in wp-admin dir
                                    Since 1999: 69 Adult Industry awards for Best Hosting Company and professional excellence.

                                    Comment

                                    • fris
                                      Too lazy to set a custom title
                                      • Aug 2002
                                      • 55679

                                      #19
                                      or this

                                      Code:
                                      <Files wp-login.php>
                                      Order Deny,Allow
                                      Deny from all
                                      Allow from xx.xx.xx.xx
                                      </Files>
                                      Since 1999: 69 Adult Industry awards for Best Hosting Company and professional excellence.

                                      Comment

                                      • brassmonkey
                                        Pay It Forward
                                        • Sep 2005
                                        • 77396

                                        #20
                                        http://wordpress.org/plugins/hc-custom-wp-admin-url/
                                        TRUMP 2026 KEKAW!!! - The Laken Riley Act Is Law!
                                        DACA ENDED - SUPPORT AZ HCR 2060 52R - email: brassballz-at-techie.com

                                        Comment

                                        • BareBacked
                                          Confirmed User
                                          • Feb 2007
                                          • 3685

                                          #21
                                          this is a huge pain in the ass
                                          NEW SITE PAYING $30 for a $1 TRIAL

                                          Selfies

                                          Comment

                                          • mineistaken
                                            See signature :)
                                            • Apr 2007
                                            • 29656

                                            #22
                                            Originally posted by EnterpriseVpsSolutions
                                            Only allow access from your static ips to the admin section deny all else.
                                            Question - does awstats count denied visitors? I mean those would still technically hit the site (and show up on the stats?).

                                            Comment

                                            • geirlur
                                              Confirmed User
                                              • Aug 2001
                                              • 2025

                                              #23
                                              Originally posted by mineistaken
                                              Question - does awstats count denied visitors? I mean those would still technically hit the site (and show up on the stats?).
                                              Doesn't show up for me
                                              Tangem Crypto Wallet - 10% OFF with Code: DJC36L

                                              Comment

                                              • tahiti
                                                Confirmed User
                                                • Oct 2003
                                                • 699

                                                #24
                                                Originally posted by mineistaken
                                                What pisses me off is that my stats (awstats etc) gets messed up by them, there is no way to have accurate stats because more hits are from bots than from actual visitors.
                                                /rant
                                                10000's of plugin to autoban after x attempts.
                                                -------------------------------
                                                Oliver Smith
                                                "Drunk Russian Hackers are Invincible"
                                                ASCII P0rn rules
                                                aim: olvrsmt
                                                icq: 21018030

                                                Comment

                                                • KaliC
                                                  Sexy Beast
                                                  • Jan 2005
                                                  • 617

                                                  #25
                                                  Originally posted by mineistaken
                                                  What pisses me off is that my stats (awstats etc) gets messed up by them, there is no way to have accurate stats because more hits are from bots than from actual visitors.
                                                  /rant
                                                  You can change this file name with no issues.
                                                  AdultWebHosting.com

                                                  Comment

                                                  • Captain Kawaii
                                                    So Fucking Banned
                                                    • Oct 2007
                                                    • 6748

                                                    #26
                                                    Great thread. Thanks for the experts pitching in. Shit is frustrating.

                                                    Comment

                                                    Working...