tomdkat
Forum Replies Created
-
Forum: Plugins
In reply to: [BruteProtect] BruteProtect is no longer supportedI have a question about BruteProtect and Jetpack. I’m about to install BruteProtect in a new WordPress installation. Does your statement about BruteProtect not being updated include BruteProtect as integrated in Jetpack as well?
Thanks!
Peace…
Forum: Plugins
In reply to: [BruteProtect] BruteProtect not enough to stop server from being overwhelmed?I understand your points and I tend to agree with you. However, adding lots of IP address to the htaccess file can cause performance degradation in the web server since it must check each IP address against the ones in the “block” list and the longer the list, the more searching that must be done. I used to have a _lot_ of IP addresses in my htaccess file and about a month ago, I deleted those entries to give BruteProtect a chance to add these address to their “master” list.
I would certainly think BruteProtect, alone, wouldn’t be enough to prevent server overload so you would need to supplement it with another plugin or firewall of some kind. Your idea of having BruteProtect effectively “maintain” the htaccess file is interesting and one I would like the BruteProtect maintainers to comment on. 🙂
Great! Thanks for the info!
Forum: Plugins
In reply to: [BruteProtect] BruteProtect not enough to stop server from being overwhelmed?In the past, I also blocked IP addresses via the htaccess file but that can cause performance degradation if too many IP addresses are being blocked this way. I’ve since removed these IP address from the htaccess file to give BruteProtect a chance to capture whatever info it wants from hacking attempts from these addresses.
I don’t think BruteProtect is intended to actually “block” IP addresses in the manner rules in the htaccess file can. Blocking IP addresses via htaccess can prevent IP addresses from accessing the entire site, which can provide more “protection” than BruteProtect can.
Just my personal experience and two cents. 🙂
Forum: Fixing WordPress
In reply to: Question about file uploadsThanks for the reply! Here is where my post went. 🙂 I posted it elsewhere and couldn’t find it later on to update it.
This turned out to be a false alarm and all is well. I’ve made some NinjaFirewall changes to help better protect against what I thought was a successful hacking attempt. I’ve already scanned the site, looked through a number of WordPress folders, and contacted the NinjaFirewall author. It turns out others have experienced this same kind of issue and based on what I’ve read, I consider my experience to be a false alarm.
Thanks again!
Great! Thanks for the information!
Forum: Plugins
In reply to: [BruteProtect] How to report an ipYes, I would like this as well. My site is getting _hammered_ with attempts to guess passwords. I have a list of IPs I would be more than happy to supply. 🙂
Thanks!
Thanks! I don’t think it was a false positive. I just wanted to learn more about the rule to find out more about what was being blocked.
Thanks!
Forum: Themes and Templates
In reply to: Theme editor missing from appearance menuMarking topic as resolved.
Forum: Themes and Templates
In reply to: Theme editor missing from appearance menuWell, I got my problem resolved. I installed “NinjaFirewall” and that had an option to block theme editing. So, it removed the theme editor link. Once I changed that setting, the theme editor link reappeared and now I can access the theme files, like before.
Peace…
Thanks for the info!
Thanks! I’m experiencing the same issue and changing the policy did the trick!
Peace…
Thanks for the info! 🙂
Fair enough. Thanks for the info!
Thanks for the info. Is there an explanation of the other rules defined somewhere?
Thanks!