brute force on wp-login.php - GoFuckYourself.com

mineistaken · 05-23-2013, 04:19 PM

What pisses me off is that my stats (awstats etc) gets messed up by them, there is no way to have accurate stats because more hits are from bots than from actual visitors.
/rant

signupdamnit · 05-23-2013, 04:37 PM

http://configserver.com/cp/csf.html and ban them manually if you can't use it to automatically ban them. I think there is a setting to do it.

TrafficRush · 05-24-2013, 01:39 AM

theres a patch for that!

mineistaken · 05-24-2013, 03:35 AM

Quote:

Originally Posted by TrafficRush

theres a patch for that!

If you mean for attacks then I installed wp harden plugin which redirects wp-login.php to home page.

Now I am looking for patch to see accurate awstats. Because now my numbers are inflated by bots and stats are basically useless, no idea how many of those are real visitors, how many bots.

nico-t · 05-24-2013, 03:46 AM

same here, seems like almost every wordpress site has this. What are those bots trying to accomplish? No way the passes can be cracked. Seems so useless in my opinion.

Barry-xlovecam · 05-24-2013, 05:21 AM

https://illuminatikarate.com/blog/ex...stats-reports/

It's in the conf file. You can exclude static IP addresses too.

mineistaken · 05-24-2013, 08:11 AM

Quote:

Originally Posted by Barry-xlovecam

https://illuminatikarate.com/blog/ex...stats-reports/

It's in the conf file. You can exclude static IP addresses too.

Very nice, however I have an issue: I installed harden wp plugin so hits to wp-login.php are redirected to home page, meaning that awstats would count them because it won't be backend hit (I assume).
Its either I prevent attacks (by using harden wp) but have compromised awstats or I do not prevnt attacks but fix awstats using this method

geirlur · 05-24-2013, 09:30 AM

I had the same problem but I've only allowed my IP to access the loginpage and now I get accurate (and disappointing) stats. It was my host who sat it up so don't ask me how

btw for blogs I like to use the jetpack stats rather than awstats, it's real time too..

d-null · 05-24-2013, 11:01 AM

it's even worse if you are running forums

PornDiscounts-V · 05-24-2013, 11:23 AM

Ban ip's for unsuccessful logins

SplatterMaster · 05-24-2013, 11:49 AM

EDIT** Never mind. Looking at the directory structure online wp-login.php is in the root directory.

Dankasaur · 05-24-2013, 12:03 PM

Use a more advanced statistics program.

SplatterMaster · 05-24-2013, 12:25 PM

Here's a trick you can try. I haven't tried it but it looks like it should work.

Password protect your admin directory with .htacess and then use .htaccess to filematch that protection to your login.php file.

http://www.inmotionhosting.com/suppo...n-php-attempts

EnterpriseVpsSolutions · 05-24-2013, 08:56 PM

Only allow access from your static ips to the admin section deny all else.

Fat Panda · 05-24-2013, 09:27 PM

yup use htaccess to only allow your ip in admin

fris · 05-25-2013, 07:09 AM

htaccess block everyone from admin, do signups via the front end and disable redirection to admin after signup

~Ray · 05-25-2013, 09:34 AM

what would that htaccess command look like?

fris · 05-25-2013, 11:41 AM

Quote:

Originally Posted by ~Ray

what would that htaccess command look like?

Code:

Order Deny,Allow
Deny from all
Allow from xx.xx.xx.xx

file placed in wp-admin dir

fris · 05-25-2013, 11:42 AM

or this

Code:

<Files wp-login.php>
Order Deny,Allow
Deny from all
Allow from xx.xx.xx.xx
</Files>

brassmonkey · 05-25-2013, 12:36 PM

http://wordpress.org/plugins/hc-custom-wp-admin-url/

BareBacked · 05-25-2013, 01:05 PM

this is a huge pain in the ass

mineistaken · 05-25-2013, 04:33 PM

Quote:

Originally Posted by EnterpriseVpsSolutions

Only allow access from your static ips to the admin section deny all else.

Question - does awstats count denied visitors? I mean those would still technically hit the site (and show up on the stats?).

geirlur · 05-26-2013, 07:06 AM

Quote:

Originally Posted by mineistaken

Question - does awstats count denied visitors? I mean those would still technically hit the site (and show up on the stats?).

Doesn't show up for me

tahiti · 05-29-2013, 12:52 AM

Quote:

Originally Posted by mineistaken

What pisses me off is that my stats (awstats etc) gets messed up by them, there is no way to have accurate stats because more hits are from bots than from actual visitors.
/rant

10000's of plugin to autoban after x attempts.

KaliC · 05-29-2013, 01:22 AM

Quote:

Originally Posted by mineistaken

What pisses me off is that my stats (awstats etc) gets messed up by them, there is no way to have accurate stats because more hits are from bots than from actual visitors.
/rant

You can change this file name with no issues.

Captain Kawaii · 05-29-2013, 01:26 AM

Great thread. Thanks for the experts pitching in. Shit is frustrating.

05-23-2013, 04:19 PM	#1
mineistaken See signature :) Industry Role: Join Date: Apr 2007 Location: ICQ 363 097 773 Posts: 29,656	brute force on wp-login.php What pisses me off is that my stats (awstats etc) gets messed up by them, there is no way to have accurate stats because more hits are from bots than from actual visitors. /rant

05-23-2013, 04:37 PM	#2
signupdamnit Confirmed User Industry Role: Join Date: Aug 2007 Posts: 6,697	http://configserver.com/cp/csf.html and ban them manually if you can't use it to automatically ban them. I think there is a setting to do it. __________________ You don't like my posts? Put me on ignore or fuck right off. I'll say what I want.

05-24-2013, 01:39 AM	#3
TrafficRush See My SIG! Industry Role: Join Date: Dec 2003 Location: Sunny Paradise Posts: 2,099	theres a patch for that! __________________ INTRALINK DSP \| SIGNUP TO MAKE BANK NOW Skype: Traffic-RushHour \| ICQ: 467617514

05-24-2013, 05:21 AM	#6
Barry-xlovecam It's 42 Industry Role: Join Date: Jun 2010 Location: Global Posts: 18,083	https://illuminatikarate.com/blog/ex...stats-reports/ It's in the conf file. You can exclude static IP addresses too.

05-24-2013, 09:30 AM	#8
geirlur Confirmed User Industry Role: Join Date: Aug 2001 Location: Æøå Posts: 2,001	I had the same problem but I've only allowed my IP to access the loginpage and now I get accurate (and disappointing) stats. It was my host who sat it up so don't ask me how btw for blogs I like to use the jetpack stats rather than awstats, it's real time too.. __________________ Make some easy pay per click money with Exoclick

05-24-2013, 03:46 AM	#5
nico-t emperor of my world Join Date: Aug 2004 Location: nethalands Posts: 29,903	same here, seems like almost every wordpress site has this. What are those bots trying to accomplish? No way the passes can be cracked. Seems so useless in my opinion.

05-24-2013, 11:01 AM	#9
d-null . . . Industry Role: Join Date: Apr 2007 Location: NY Posts: 13,724	it's even worse if you are running forums

05-24-2013, 11:23 AM	#10
PornDiscounts-V Confirmed User Industry Role: Join Date: Oct 2003 Location: L.A. Posts: 5,740	Ban ip's for unsuccessful logins

05-24-2013, 11:49 AM	#11
SplatterMaster Confirmed User Industry Role: Join Date: Jan 2012 Location: cyberspace Posts: 790	EDIT** Never mind. Looking at the directory structure online wp-login.php is in the root directory. Last edited by SplatterMaster; 05-24-2013 at 12:02 PM..

05-24-2013, 12:03 PM	#12
Dankasaur So Fucking Fossilized Industry Role: Join Date: Sep 2011 Posts: 1,432	Use a more advanced statistics program.

05-24-2013, 12:25 PM	#13
SplatterMaster Confirmed User Industry Role: Join Date: Jan 2012 Location: cyberspace Posts: 790	Here's a trick you can try. I haven't tried it but it looks like it should work. Password protect your admin directory with .htacess and then use .htaccess to filematch that protection to your login.php file. http://www.inmotionhosting.com/suppo...n-php-attempts

05-24-2013, 08:56 PM	#14
EnterpriseVpsSolutions Registered User Industry Role: Join Date: May 2013 Location: Tampa Posts: 97	Only allow access from your static ips to the admin section deny all else. __________________ Enterprise Vps Solutions Internet Solutions Connecting The World Managed Services "Cpanel" - Virtual Private Server (VPS) - Control your own Cloud System - Shared Cpanel Web Hosting on HA www.Enterprisevpssolutions.com Tampa, Florida in Hivelocity Datacenter their Network Providers Global Crossing, Level3, TW Communications, Cogent, Global Telecom and Technology

05-24-2013, 09:27 PM	#15
Fat Panda Porn is Dead. Move along. Industry Role: Join Date: Aug 2006 Posts: 13,295	yup use htaccess to only allow your ip in admin

05-25-2013, 07:09 AM	#16
fris Too lazy to set a custom title Industry Role: Join Date: Aug 2002 Posts: 55,242	htaccess block everyone from admin, do signups via the front end and disable redirection to admin after signup __________________ Since 1999: 69 Adult Industry awards for Best Hosting Company and professional excellence. WP Stuff

05-25-2013, 09:34 AM	#17
~Ray visit hardlinks.org Industry Role: Join Date: Jun 2003 Location: Las Vegas , Nv >>> [email protected] or icq 94994627 anytime Posts: 18,362	what would that htaccess command look like? __________________ Adult Backlinks for Adult Websites - Testimonials Available

05-25-2013, 11:42 AM	#19
fris Too lazy to set a custom title Industry Role: Join Date: Aug 2002 Posts: 55,242	or this Code: <Files wp-login.php> Order Deny,Allow Deny from all Allow from xx.xx.xx.xx </Files> __________________ Since 1999: 69 Adult Industry awards for Best Hosting Company and professional excellence. WP Stuff

05-25-2013, 12:36 PM	#20
brassmonkey Pay It Forward Industry Role: Join Date: Sep 2005 Location: Yo Mama House Posts: 76,937	http://wordpress.org/plugins/hc-custom-wp-admin-url/ __________________ TRUMP 2025 KEKAW!!! - Support The Laken Riley Act!!! END DACA - SUPPORT AZ HCR 2060 52R - email: brassballz-at-techie.com

05-25-2013, 01:05 PM	#21
BareBacked Confirmed User Join Date: Feb 2007 Location: www.BareBacked.com Posts: 3,685	this is a huge pain in the ass __________________ NEW SITE PAYING $30 for a $1 TRIAL Selfies

05-29-2013, 01:26 AM	#26
Captain Kawaii So Fucking Banned Industry Role: Join Date: Oct 2007 Posts: 6,748	Great thread. Thanks for the experts pitching in. Shit is frustrating.