Scuri Alerts – Am I In Danger?

  • I have started getting about 30 Scuri Alerts a day saying ‘Someone failed to login to your site. If you are getting too many of these messages, it is likely your site is under a password guessing brute-force attack’. Do I need to do something? If so what can I do?

Viewing 2 replies - 1 through 2 (of 2 total)

  • Yes someone is attempting to login to your website, but 30 a day is like nothing.
    You are only in danger if an administrator account has a username + password combo that is guessable. For this reason the username should never be “admin”, it should also not be discernible by someone browsing your site, say as an author’s name.
    The password should also be long enough and complex enough to not be guessable, it certainly should not be a dictionary word, length is probably more important than complexity, it certainly should include upper and lower case letters, special symbols and digits.

    Thread Starter kbboy

    (@kbboy)

    Thanks Ross. I’ll get right on this.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Scuri Alerts – Am I In Danger?’ is closed to new replies.