Hostname banning

  • Resolved justatest47

    (@justatest47)


    6 years, 4 months ago

    Nice plugin but you should strongly consider banning entire hostnames because hackers often change IPs often than you change your socks and it would be extremely time consuming to ban all bad ips in this world individually!

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author Jeff Starr

    (@specialk)

    Hi justatest47, glad to help. Yes I am aware of the relative effectiveness or ineffectiveness (depending on the circumstance) of blocking individual IP addresses. I helped pioneer the topic over 10 years ago with in-depth research, analysis, and discussion. Since then, I have continued learning and studying web security and the best ways to block bad actors.

    That in mind, I wrote Banhammer for webmasters and admins who need a simple way to block rogue requests and direct, targeted attacks. For such scenario, blocking by IP address is simple and effective. And in the Pro version of Banhammer, the admin’s blocking/banning powers become even more powerful, with the ability to block based on IP, user agent, user, request, or referrer. In my experience, these vectors are more than sufficient to block just about anyone or anything.

    That said, I do like your idea of blocking bad hostnames, it would be useful for certain types of attacks where, as you mention, blocking via IP address is insufficient. I will take a closer look and see about maybe adding this in a future version of the plugin. Thank you very much for the feedback, it is appreciated.

    Thread Starter justatest47

    (@justatest47)

    Yeah you’re welcome for my suggestion but if you add my suggestion to the paid version then it would have no use for me as I never paid for a plugin in my life and never will. I did however a few donations willingly to free plugins but that’s another story. Lets be of use to eachother. I gave you this suggestion, you give me a suggestion please.

    I added the code below to my .htaccess file but somehow I still see amazonaws traffic coming through, in my Wordfence Live Traffic. How? Why?? I added my own IP and I successfully blocked myself from my own website BUT why won’t it block hostnames?? What am I doing wrong here??

    <RequireAll>
    Require all granted
    Require not host .amazonaws.com
    </RequireAll>

    Thanks

    Plugin Author Jeff Starr

    (@specialk)

    Not sure, but that is pretty basic code that should work on any machine. My best guess would be that something else (like other .htaccess rules, some server configuration, or perhaps something happening in a PHP script, etc.). Are you getting any errors in your server logs or WP debug?

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Hostname banning’ is closed to new replies.