Can not get 404 detection to work
-
I am trying to block a couple of sites that keeps hammering my two websites with 404 errors every day. What is disturbing is that they keep trying to access various wp-admin directories, multiple times a day, every day. I could do this myself manually in the .htaccess file, but I want to detect other attacks in the future automatically and I need the descriptive logs for the time being to file a complaint with the web site owners. I don’t know if my settings are wrong, I am missing a setting, or what, but I can’t get the lockouts to activate. What am I missing?
Here are my settings. I tweaked the settings from default to make them more sensitive to 404’s, but that has not helped either:
1) Settings > 404 detection
I am reading the following as 3 errors in a 5 minute period and there will be a lockout. I am easily getting like 5 – 15 404’s in that time frame every day from the same address.
1) Enable 404 detection = yes
2) Minutes to Remember 404 Error (Check Period) = 5 minutes
3) Error Threshold = 3 errors2) Settings > Global Settings
There is a note to check the lockout settings which can be configured in the Global Settings. So I set those as follows. I am reading the following as I have 30 days in which to get 3 of the lockouts as triggered in the 404 detection above, and then the site is permanently blocked.
1) Enabled blacklist repeat offender = yes
2) Blacklist threshold = 3 lockouts
3) Blacklist lockout period = 30 days.
4) Lockout period = 15 Minutes
- The topic ‘Can not get 404 detection to work’ is closed to new replies.
