GoFuckYourself.com - Adult Webmaster Forum - View Single Post - High server load of wp-login bots

redbusiness · 10-27-2015, 11:30 AM

Hi Robwod,

thanks for your tips.

1. Against brute fore on wordpress i have installed Wordfence which blocks that attempts and also locked down the wp-login.php with a .htaccess.

2. xmlrpc.php has been blocked by my technicans on the whole server

3. fail2ban is already installed on the server, my technicans say.

What i dont understand is, that i get now all attacks directly on the index.php of wordpress. Is there somewhere in WHM a possibility where i can see it more detailed which file they try to attack? So that i can block this more specific?

Greets

10-27-2015, 11:30 AM
redbusiness Confirmed User Industry Role: Join Date: Sep 2008 Posts: 291	Hi Robwod, thanks for your tips. 1. Against brute fore on wordpress i have installed Wordfence which blocks that attempts and also locked down the wp-login.php with a .htaccess. 2. xmlrpc.php has been blocked by my technicans on the whole server 3. fail2ban is already installed on the server, my technicans say. What i dont understand is, that i get now all attacks directly on the index.php of wordpress. Is there somewhere in WHM a possibility where i can see it more detailed which file they try to attack? So that i can block this more specific? Greets