Lots Of BOT-net IP Addresses

  • Resolved mlewitz

    (@mlewitz)


    10 years, 9 months ago

    Hi, I just discovered this plugin and I really like the idea of it. Kind of like the spamhaus.org idea. Nice.

    I’ve been using WP Better Security and for whatever reason one of the blogs I manage has been getting unusually HAMMERED for days and days, non-stop with brute-force attempts (mostly to ‘admin’ which there is no user). Setting the plugin to ban the IP after only 2 failed login attempts (sometimes even 1), I’ve now accumulated a list of IP’s to an obviously elaborate BOT-net. (I’ve got exactly 1938 IP’s…and growing…from the past couple weeks.) Each single IP accounts for DOZENS of login attempts, reflected in our endless server access logs for an otherwise low-traffic site.

    Wish I would have had your BP plugin installed a couple weeks ago. Adding this data to your database would be highly beneficial for many others and surely put a damper on this activity for all who use your BP plugin.

    That being said, is there a way I can contribute this priceless list of IP’s to your database to benefit others in the future?

    -Mike

    http://wordpress.org/extend/plugins/bruteprotect/

Viewing 1 replies (of 1 total)
  • Plugin Contributor Sam Hotchkiss

    (@samhotchkiss)

    10 years, 9 months ago

    Hey Mike– those IPs are PROBABLY already in our DB– we’ve got over 130,000 IPs on file now– we’ve decided that we’re only going to block IPs that we have found to be malicious through our own algorithms, just to prevent any confusion. While I have no doubt that your list is all bad guys, we want to have internal documentation for why any particular IP has been banned.

    Hopefully BP can help cut down your server load and keep the jerks out!

    Best,
    Sam

Viewing 1 replies (of 1 total)
  • The topic ‘Lots Of BOT-net IP Addresses’ is closed to new replies.