Pwhitehurst
Forum Replies Created
-
Forum: Requests and Feedback
In reply to: Built-in brute force protectionBrute forcing isn’t 5 requests a minute. That would take tens of thousands of years unless you strike lucky. Enforcing strong passwords for admins by default would be a good start.
Locking IP is limited as brute force uses millions of IPs but only about 100 requests per IP per 24 hours. At least that’s what the Feb 2017 Wordfence reports say.
So locking by IP you’d need a central set of servers that track all failed logins by IP across all WordPress sites. That’d need a significant investment in infrastructure. That costs money and how many would be prepared to pay for that? Who would manage that infrastructure? How many companies would be happy that their servers need to talk to external servers for every failed login? They can’t just lock down their server firewalls. Free and open source is the main reason WordPress has the share it does.
Besides if an admin isn’t bothered about security they are probably not bothered about keeping Linux, PHP, or WordPress up to date. So any updates to address this may be mute.
- This reply was modified 9 years, 2 months ago by Pwhitehurst.
- This reply was modified 9 years, 2 months ago by Pwhitehurst.
- This reply was modified 9 years, 2 months ago by Pwhitehurst.
Forum: Plugins
In reply to: [WooCommerce] WooCommerce Causing Heavy Server LoadsWhatever is causing the high server loads it isn’t woocommerce core. I run woocommerce on a much lower spec server than yours. Page load of woo commerce pages on my site, which as stated above aren’t cached is 325mS and CPU remains below 3%
You posted some PHP code from your divi theme which is looping around to total some child products. Each PHP loop will be firing off a query to the DB. Far more efficient CPU and I/o wise to get the DB to do it in a single query. So I suspect your theme has some really inefficient loops which are firing in every woocommerce page load and causing those cpu spikes. I’d run a scan of the theme to see how many woocommerce hooks it is plugging into to execute its own code. It should be minimal but I suspect it’s not.
You don’t say how many products your users have setup in your woocommerce store. What are the approx numbers of simple / grouped products that have been setup etc?
Is the theme compatible with the latest woocommerce? Where a theme overrides the woocommerce templates they need to keep up with woocommerce changes.
Forum: Plugins
In reply to: [WP GPX Maps] Is WP-GPX Maps PHP7 compatibleYes, my site is running on PHP7 just fine.
Forum: Plugins
In reply to: [WP Photo Album Plus] Global Photo Tag Cloud on MultisiteYes the tags are now shown on same site after doing what you suggested.
Forum: Plugins
In reply to: [RSVPMaker] Post not fond for recurring eventsYes, when they click the RSVP Now button they get the page not found error but only on recurring events.