Support » Plugin: All In One WP Security & Firewall » DDOS Attack – Brute Force Doesn't Work

  • FGD

    (@creativetopia)


    I had a WordPress installation generating 100’s of email messages. It would come in spurts. The logs for this plugin did not show anything. After jumping down rabbit holes and looking into our WHM settings, I realized we were getting attacked. The login.php file process was starting over and over.

    The WordPress email I was getting was, “There is currently an error with the database connection.” but it was not getting sent from WordPress, rather the web server.

    So, I deactivated All In One WP Security & Firewall plugin and installed iThemes Security WordPress plugin. After setting up the new plugin, it immediately detected the brute force and locked out the IP Address. The emails finally stopped. HOORAY!

    I’m just glad I did something to prevent a breach or hack.

    The worst part is I have switched some 40 plus installs to this plugin thinking it was better but in-fact it is worse. I really do not leaving negative reviews but it was very frustrating and I want others to know if they are having a similar attack or issue on their website.

    Hopefully this major flaw will get addressed.

    Thanks!

Viewing 11 replies - 1 through 11 (of 11 total)
  • Plugin Author wpsolutions

    (@wpsolutions)

    Hopefully this major flaw will get addressed

    What major flaw?
    Did you raise a support thread before leaving a 1 star rating?
    You’ve provided no details regarding which features you had activated…etc.

    I think it is a bit unfair to judge this plugin before giving us a chance to investigate your particular situation.

    Thread Starter FGD

    (@creativetopia)

    The major flaw is this plugin does not offer a way of automatically detecting and blocking attacks from specific IP Addresses. Am I mistaken? Sure, there is a Blacklist Manager but that is manual and impossible to manage on multiple sites.

    Plugin Contributor mbrsolution

    (@mbrsolution)

    @fgd thank you for replying back.

    Can you share with us what Firewall and Brute Force features you enabled in the plugin?

    As you have notice this plugin has many features that help you protect your website. If you can provide us with more information we can help you secure your website using this plugin.

    Regards

    Plugin Author wpsolutions

    (@wpsolutions)

    Sure, there is a Blacklist Manager but that is manual and impossible to manage on multiple sites

    I’m not sure what you mean.
    Once you enter the addresses the BL feature is automatic.

    wpsolutions: what FGD means is that the Blacklist Manager does not automatically kick in and stop attacking IPs. You have to go in manually and cut-and-paste IPs to it one at a time. This IS impossible when you’re in charge of many sites and/or if you’re getting hit with a lot of spammers. It’s just not gonna happen.

    The better part of a year ago, I suggested that a HUGE improvement to this plugin would be adding spammer IPs to the Blacklist automatically. You could set automatic criteria (# of attempted hacks, etc.) and then it would be set and forget. Which, IMHO, is how it should work.

    Your plugin has many wonderful features. But making us manually add offending IPs when it could be done automatically means that as admins, we basically have to become doormen. It sorta defeats the whole purpose of automation, insofar as blocking spammers goes.

    Plugin Author wpsolutions

    (@wpsolutions)

    KSteinmann.
    Ok thanks for the clarification and your explanation sounds like a reasonable feature.
    We will seriously look at adding some kind of feature of the type you described which automatically blacklists IP addresses based on spammer IPs.

    Thread Starter FGD

    (@creativetopia)

    @wpsolutions – that would be great!

    I’m glad that helped, and we, the loyal user base, would LOVE to see the “automatic Blacklist” feature implemented. IMHO, that one feature alone would take AIOWPS from not just “merely great” to truly epic!

    🙂

    Thanks for listening and (please… we need you) keep up the outstanding work.

    Has this feature been implemented?

    I’d like to bump the question above?

    Plugin Contributor mbrsolution

    (@mbrsolution)

    @beagent in the plugin version 4.0.4, the following feature was added.

    Added new feature: Auto Block Spammer IPs. This feature will automatically and permanently block IP addresses which are linked to comment SPAM. (see SPAM Prevention -> Comment SPAM IP Monitoring tab)

    Is this what you are referring to?

    The above feature addition to the plugin is in respond to @ksteinmann suggestion above.

    The better part of a year ago, I suggested that a HUGE improvement to this plugin would be adding spammer IPs to the Blacklist automatically. You could set automatic criteria (# of attempted hacks, etc.) and then it would be set and forget. Which, IMHO, is how it should work.

    Let me know if this helps.

    Regards

Viewing 11 replies - 1 through 11 (of 11 total)
  • The topic ‘DDOS Attack – Brute Force Doesn't Work’ is closed to new replies.