brute force attacks

  • Resolved do05

    (@do05)


    9 months, 1 week ago

    Hello,
    Since April, I’ve had many brute force attacks.
    I’ve changed my url page connection several times and I’ve still had attempts to attack my user interface. I installed captcha and honeypot and still the problem. I changed url page connection again this morning and one hour later another attack attempt. How is this possible? What can I do about it? Do I need to activate 6g firewall rule and the php rules in the firewall or is there no connection? Thanks

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support hjogiupdraftplus

    (@hjogiupdraftplus)

    Hi @do05,

    Can you please cross check audit logs from WP Security > Dashboard > Audit logs stack Trac is it regarding failed login ?

    XML RPC call of wp_getUsersBlogs is trying to authenticate the user that can be issue- WP Security > Firewall > PHP rules tab > Completely block access to XMLRPC , Disable pingback functionality from XMLRPC Please check both and Save.

    Regards

    Thread Starter do05

    (@do05)

    Hi, many thanks for your answer. I made the changes you said and it was the right solution, I haven’t had any more attack attempts since. Also, do you think it’s better to activate 6g firewall rules in the settings ? Many thanks.

    Plugin Support hjogiupdraftplus

    (@hjogiupdraftplus)

    Hi @do05,

    Yes, It is better to enable the 6G firewall rules. Please make sure it does not have any conflict issues with other plugins.

    Regards

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘brute force attacks’ is closed to new replies.