Brute Fource Attempt – Event when All IPs blocked

  • Resolved Flexer

    (@flexer)


    6 years, 9 months ago

    Hello
    I am a dev experimenting with different ways to secure websites. This includes tools such as Wordfence premium and free as well as various server and client side applications.

    I am testing completely blocking the admin for all IP’s except one whitelsited IP.

    I still see brute force attacks being reported from Wordfence for example from Netherlands. When I use a VPN set to Netherlands on the /log-in.php I get the expected 403 forbidden page. How is Wordfence still reporting brute force attacks?

    Thank you

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)

  • Hi Flexer,

    It depends on the way you blocked the IPs, was that with some rules added in “.htaccess” file? also, did you blocked access to wp-admin/wp-login.php? perhaps these requests reported by Wordfence was trying to log in via XML-RPC.

    Thanks.

Viewing 1 replies (of 1 total)
  • The topic ‘Brute Fource Attempt – Event when All IPs blocked’ is closed to new replies.