WordPress.org

Support

Support » Plugins and Hacks » BruteProtect » [Resolved] Lots Of BOT-net IP Addresses

[Resolved] Lots Of BOT-net IP Addresses

  • Hi, I just discovered this plugin and I really like the idea of it. Kind of like the spamhaus.org idea. Nice.

    I’ve been using WP Better Security and for whatever reason one of the blogs I manage has been getting unusually HAMMERED for days and days, non-stop with brute-force attempts (mostly to ‘admin’ which there is no user). Setting the plugin to ban the IP after only 2 failed login attempts (sometimes even 1), I’ve now accumulated a list of IP’s to an obviously elaborate BOT-net. (I’ve got exactly 1938 IP’s…and growing…from the past couple weeks.) Each single IP accounts for DOZENS of login attempts, reflected in our endless server access logs for an otherwise low-traffic site.

    Wish I would have had your BP plugin installed a couple weeks ago. Adding this data to your database would be highly beneficial for many others and surely put a damper on this activity for all who use your BP plugin.

    That being said, is there a way I can contribute this priceless list of IP’s to your database to benefit others in the future?

    -Mike

    http://wordpress.org/extend/plugins/bruteprotect/

Viewing 1 replies (of 1 total)
  • Plugin Author Sam Hotchkiss

    @samhotchkiss

    Hey Mike– those IPs are PROBABLY already in our DB– we’ve got over 130,000 IPs on file now– we’ve decided that we’re only going to block IPs that we have found to be malicious through our own algorithms, just to prevent any confusion. While I have no doubt that your list is all bad guys, we want to have internal documentation for why any particular IP has been banned.

    Hopefully BP can help cut down your server load and keep the jerks out!

    Best,
    Sam

Viewing 1 replies (of 1 total)
  • The topic ‘[Resolved] Lots Of BOT-net IP Addresses’ is closed to new replies.
Skip to toolbar