Login attacks by spambots and hackerbots
Automated Brute Force Login attacks by spambots and hackerbots are a regular and ongoing type of website attack. The volume and frequency of Brute Force Login attacks are steadily increasing and will continue to increase. Brute Force attacks make up somewhere in the neighborhood of 85% (probably more like 90% to 95%) of the total of all types of ongoing website attacks these days. BPS Login Security & Monitoring protects the WordPress Login page from Brute Force attacks, but if your username is publicly known/displayed or can be harvested by automated bots then your user account may get locked very frequently.
Changing your IP isn't much help. Typically spammers and hackers have millions of IP addresses and hostnames that they can switch to. This is typically completely automated in the attack scripts that they use. ie “if IP address X is blocked use IP address Y…..”
We found that a CAPTCHA method is the optimum anti-spammer method to use. I recommend installing a CAPTCHA plugin.
What to do if your User Account is being locked repeatedly:
If you want to block multiple IP Addresses in a subnet then you would not include the last Octet of the IP Address.
[INSTALL THIS FOR ME NOW]
Examples: Using 46.119.35. blocks all IP address from 1-256 in the last Octet – 188.8.131.52 through 184.108.40.2066. You can also block from 46.119. to block all IP addresses that start with 46.119.
Please note that you can only carry on following instructions if you already have the plugin installed. For more information on plugin installation please contact us or see this page for pricing.
1. Add your IP Address blocking code to this Custom Code text box: CUSTOM CODE BOTTOM HOTLINKING/FORBID COMMENT SPAMMERS/BLOCK BOTS/BLOCK IP/REDIRECT CODE
2. Click the Save Root Custom Code button.
3. Go to the BPS Security Modes page and click the Root Folder BulletProof Mode Activate button.
# BLOCK/FORBID Spammers etc Order Allow,Deny Deny from 46.119.35. Deny from 46.119.45. Deny from 91.236.74. Deny from 93.182.147. Deny from 93.182.187. Deny from 94.27.72. Deny from 94.27.75. Deny from 94.27.76. Deny from 193.105.210. Deny from 195.43.128. Deny from 198.144.105. Deny from 199.15.234. Allow from all
# BLOCK/FORBID Chinese Spammers by CIDR Blocks Order Allow,Deny Deny from 220.127.116.11/13 Deny from 18.104.22.168/12 Deny from 22.214.171.124/14 Deny from 126.96.36.199/13 Deny from 188.8.131.52/17 Deny from 184.108.40.206/18 Deny from 220.127.116.11/20 Deny from 18.104.22.168/19 Deny from 22.214.171.124/17 Deny from 126.96.36.199/16 Deny from 188.8.131.52/18 Deny from 184.108.40.206/19 Deny from 220.127.116.11/18 Deny from 18.104.22.168/20 Deny from 22.214.171.124/18 Deny from 126.96.36.199/17 Deny from 188.8.131.52/15 Deny from 184.108.40.206/16 Deny from 220.127.116.11/14 Deny from 18.104.22.168/13 Deny from 22.214.171.124/13 Deny from 126.96.36.199/11 Deny from 188.8.131.52/14 Allow from all
Was this answer helpful?
Powered by WHMCompleteSolution