Daily Activity Report emails

  • Resolved honeybee365

    (@honeybee365)


    9 years, 4 months ago

    Hello,

    I was wondering on the Daily Activity Report emails, when it says:

    Blocked Hacking Attempts: critical: xx, high: xx, medium: xx
    Blocked Brute Force attacks: xx

    What do the different levels (critical, high and medium) mean exactly? And what action should we prompted to take? Likewise for the Blocked Brute Force attacks.

    Apologies if this is noted elsewhere, I did have a look at the documents at the top of this forum but I couldn’t find the answer.

    As always thank you so much for your help.

    Kind regards,
    Honeybee

Viewing 1 replies (of 1 total)
  • Plugin Author nintechnet

    (@nintechnet)

    9 years, 4 months ago

    Hi,

    There is no special action to take. The firewall blocked those threats and then sent you the daily report to keep you informed of what’s going on.

    -Critical: means that was a real threat. It could also mean it was blocked because you specifically ask for it (e.g., a firewall policy that you enabled).
    -High: a potential threat. For instance, NinjaFirewall detects and blocks a lot of hackers bots even before they attempt to do something wrong.
    -Low: not really a threat. For instance, it can apply to referrer spam or non-RFC compliant requests.

Viewing 1 replies (of 1 total)

The topic ‘Daily Activity Report emails’ is closed to new replies.