Curious reporting format
-
I’m using IPBC on multiple sites most of which are at WP 4.3.1. In the past, I would get alert emails that would look like this –
111.111.111.111 blacklisted on http://www.example.com due to failed login attempts on following condition:
Attempts: 5 (max)
Time for max attempts: 60
Total attempts made: 5Failed Attempts Details (Max 5)
log => aaaaaa
pwd => stupid
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0
Jul 11, 2015
———————————————
log => aaaaa
pwd => internetetc.
But now, I am getting ones like this –
45.79.131.88 blacklisted on http://www.example.com due to failed login attempts on following condition:
Attempts: 3 (max)
Time for max attempts: 30
Total attempts made: 151Failed Attempts Details (Max 5)
–user-agent=Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:39.0) Gecko/20100101 Firefox/39.0
Nov 12, 2015
———————————————
–user-agent=Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:39.0) Gecko/20100101 Firefox/39.0
Nov 12, 2015
———————————————etc.
Others contain this kind of thing –
Failed Attempts Details (Max 5)
\”1.0\”?>
system.multicallmethodName
wp.getCategories
paramsAnd what’s especially curious is that I get 100 of them in 1 minutes ALL with the same blacklisted IP.
Can you tell me what’s up with this?
- The topic ‘Curious reporting format’ is closed to new replies.