Localhost Attacking My Own Site?

  • Resolved Adam

    (@panhead)


    2 years, 2 months ago

    Hi,

    In the last 3 weeks, I’ve received numerous attacks each day (at least 3 per site I manage) from the localhost IP 127.0.0.1. The username login attempts are based on the site’s URL as well as some that use “test1234” (or similar). Is this a flaw in this plugin?

    I scanned my web server using my host’s virus scanner, and it turned up nothing.

    Help!

    • This topic was modified 2 years, 2 months ago by Adam.
Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author WPChef

    (@wpchefgadget)

    Hi Adam,

    Can you post here the content of the Debug tab of the plugin? Your server might not detect IP addresses correctly.

    Thread Starter Adam

    (@panhead)

    Hi @wpchefgadget Thanks for your quick reply!

    I contacted my host, and they suggested adding the localhost IP to the safelist of the plugin. I did that, and the email notifications went away.

    However, here is the debug info from the plugin:

    REMOTE_ADDR = IP0

    Plugin Author WPChef

    (@wpchefgadget)

    Adam, could you contact your webhosting provider and ask them to make sure the REMOTE_ADDR value gets populated correctly. This is something they have to do in their webserver settings. If they can’t we recommend finding another provider that does this correctly )).

    Thread Starter Adam

    (@panhead)

    @wpchefgadget Would that be the 127.0.0.1 value?

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Localhost Attacking My Own Site?’ is closed to new replies.