So many lockouts. Is this normal?

  • Resolved trepet

    (@trepet)


    6 years, 11 months ago

    Hi! I just installed Cerber plugin yesterday and now I have these stats in the last 24 hours:

    7928 Malicious activities mitigated
    1645 Malicious IP addresses detected
    1563 Lockouts occurred

    Looks like all the lockouts are due to “Attempt to access: wp-login.php” reason.

    Is this actually normal? I haven’t really used any security plugins in the past besides hiding login page, so now I’m not sure what to think – this amount of activities is normal (I just didn’t know about that) or it isn’t normal, something wrong with my configuration or hosting or I don’t know what ??

    Thanks

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author gioni

    (@gioni)

    Your site is under a typical botnet attack. It’s not good, but from time to time it happens.

    Anyway, no worries. The advice in this situation is: enable Custom login URL, disable access to wp-login.php and disable redirect dashboard requests.

    Some bots like trying to log in via XML-RPC interface, so I recommend disabling it too.

    Thread Starter trepet

    (@trepet)

    Thanks Gioni, all done like you recommend.

    One more question – in the traffic inspector I see requests like ‘xxxxxxx.com/-/-/-/-/-/-/-/-/-/-/’. Is this also something malicious?

    Thanks again!

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘So many lockouts. Is this normal?’ is closed to new replies.