Should there be a lockout at least at some point?
-
For the last 17hrs, a single ip address has been brute-forcing continuously, and is managing around 171 attempts every 120mins.
I know the site’s not under threat, especially with this plugin (only 1450 attempts rather than hundreds of thousands, and the strong passwords, not even using correct usernames etc), but is there any significant resource usage having waiting scripts continuously going?
I know you’ve avoided absolute lockouts, but would there be any place or benefit for having at least some threshold for lockout, that far exceeds what even the most persistent of regular users might try? e.g. after 50 goes from a single ip for example, it would get blacklisted for good (or until an admin undoes this). Clearly the odd attacker doesn’t get bored very easily of trying! Or is this just something that makes us feel better, but doesn’t actually make any difference to anything?
- The topic ‘Should there be a lockout at least at some point?’ is closed to new replies.