Admin – passed ?

No it means that someone trying to login as admin was not stoppled because it passed all the tests. If the robot trying to log in had the wrong password, it was not logged in.

If you have not changed the default admin userid then the robots will hit your site thousands of time trying to guess your password.

Keith

No i always change the user id when i install the wordpress. ??

One more question i dont know its a bug or it suppose to be that way:

I banned ip: 46.118.28.*

And in morning i see that:
2014/11/23 11:32:08 — 46.118.28.223 hereismynick/Password1 /wp-login.php Black List IP

So what the user have seen ? Did he seen my msg i setup in the options page ?? Or he hit 1 time bruteforce and then seen a msg ?

Btw is there will be a update soon with posibilyty to change the text that displays when someones blocked ? It says:

“N” If You feel that You have benn blocked…

I want to change it to Polish language ??

The plugin lets everyone see the site. It stopped him from logging in because he was on the black list.

He sees the 403 denied message. You can set that up on the setting page. If you have the captcha box checked, it gives him a second chance to prove he is human.

There might be one last update, but I have not had time to work on it in almost a year. After that you can edit the plugin and change the message yourself.

Keith

Ok thank You for Your answer waiting for update ?? Btw nice addon will be adding ban people using this 212.160.10.11-212.160.10.255 ??

Try 212.160.10.0/24

I seem to remember that the CIDR format works.

CIDR is something like:

1.0.1.0/24
1.0.2.0/23
1.0.8.0/21
1.0.32.0/19
1.1.0.0/24
1.1.2.0/23
1.1.4.0/22

??

Yes.

You can see the cidrs I block in my htaccess file at:

https://kpgraham.com/sht.php

This file is generated from the spammers that I discover.

It is huge and I am incorporating this into the next version of this or another plugin that I’m working on.

Keith

HTTP Status 403 – Access is denied
Your IP Address:87.205.38.xxx

I am sorry, but the IP range of your computer is blocked.

??

Btw nice version feature will be making all people ips that are banned not to display on the history. Because now i have banned some ip ranges but i still see them on the list. That make things a little bit confusing

87.205.32.0/21 may be a polish ISP. Perhaps it needs to be white-listed. I have, admittedly, an American bias, which I an trying to correct, but I err on the side of caution. Poland is not as bad as some other Eastern European countries for spam.

The history should show all deny events, I think.

Keith

Yea it should show all deny events but can You add maybe a color to it the red color is bruteforce attack or spam attack that is not on the black list ip. And the green are the attacks that have been stopped using a ip ban list. The problem now is i still see the banned ips trying to get and i dont know if those ips are new or old one from my ip ban list.

It is unlikely that there will be a release very soon. But I will add this to the TODO list.

thanks,

Keith

Btw do You know a site where You enter a IP and it show you the ip range and under it it show the CIDR of it ? Because now what i need to do is copy the ip go to the site copy it in site it show the range go to another site copy start of range and end of it and then copy the generated CIDR to the spam ban ip list ?? Maybe in the history add some kind of IP when You click on it it will show You the ip range and CIDR and You click on cidr and it will add it to black list or white list ? : )

The best for me is:

https://lacnic.net/cgi-bin/lacnic/whois?lg=EN

Keith