Automattic attempted to gain entry??? (3 posts)

  1. sammysimms
    Posted 3 years ago #

    So on my self-hosted site, I have the plugin Limit Login Attempts http://wordpress.org/extend/plugins/limit-login-attempts/ installed on my site and I just got notification that two attempts have been made to gain entry into my site. When I get these messages it shows the ip addresses and I usually check out the ip addresses to see where they are coming from and if I need to ban the ip address from my network. When I checked the two recent ones, they said that it was a dedicated ip address belonging to the Automattic. I find this very odd because normally it is from overseas from hacking attempts and I just ban them from my entire system.

    I was wondering if anyone else has had this problem and I wouldn't mind hearing from someone from Automattic about this situation.

  2. Are you using Jetpack? Automattic's servers will make a connection back to your site to do some things like the Sharing and Publicize features and so forth, so it's possible that this was misdetected somehow.

  3. sammysimms
    Posted 3 years ago #

    Yes, I do have the Jetpack plugin installed on the site. However, I have had both plugins installed and running on the site for quite a while now and never had any issues. Plus, as I was looking into the Limit Login Attempts plugin it only records information from the login page (for my site's page it is the standard wp-admin/wp-login.php). It records two datasets, ip address and username used to attempt access. It could be a Jetpack plugin error but there were two attempts at the same time and both ip addresses are different but both associated with Automattic (at least through the whois.arin.net lookup feature).

Topic Closed

This topic has been closed to new replies.

About this Topic