Log Report Relevance

  • Resolved bobjgarrett

    (@bobjgarrett)


    2 years, 9 months ago

    My log report is showing numerous attempts at logins with user names which are genuine. The attempts are to /wp-login.php which we do not use as we have a plugin for login. The reason for rejection is No Accept Header:.
    My question though is does the fact it is using genuine user names to try to log in mean my user database has been compromised?

Viewing 1 replies (of 1 total)

  • No, this is extremely common.

    The usernames of your site are more or less public, and bots automatically attempt login with these usernames. It doesn’t mean that you’re compromised or even being targeted.

    All WordPress sites are constantly under attack, indiscriminately by such bots. As long as everyone’s password is strong, you shouldn’t need to worry.

Viewing 1 replies (of 1 total)
  • The topic ‘Log Report Relevance’ is closed to new replies.