Support » Plugin: Redirection » How to respond when redirect notices probing

  • Resolved billbennett

    (@billbennett)


    Every few days I look at the 404 log the Redirection plug-in generates. Some days there are long lists of attempts to reach, well, I’m not entirely certain what they are trying to reach, but it looks like some kind of attack.

    Today’s example is:

    ​/2014​/06​/05​/2degrees-gives-wellington-customers-cbd-wi-fi​/caravans.php

    The first part is a legitimate page on my site. The “caravans.php” part never existed. The same ip address made hundreds of requests to a handful of non-existent pages with legitimate addresses followed by dozens of .php, .html or .cfm file names.

    Clearly it’s a probing attack of some kind. How can I see them off and is there a way to harden the site against such attacks, presumably sooner or later someone is going to find some hole they can exploit?

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author John Godley

    (@johnny5)

    It’s common to be probed for vulnerable software so make sure you’re always using the latest software.

    Some plugins, such as Jetpack, have code to detect brute force attacks and these may also help.

    I guess the report in redirect is something of an eye opener.

Viewing 2 replies - 1 through 2 (of 2 total)
  • You must be logged in to reply to this topic.