1,023 blocked malicious login attempts. Who trying to steal my blog? Any advises?
-
My new blog growing up fast and I'm about the break the Alexa million and I discovered 1,023 blocked malicious login attempts today. I'm really got scared when I saw this number. I'm using WordPress, any advises?
-
There will definitely be cases out there like you described, Massimiliano. It's a wild world out there. We can only do so much to protect ourselves.
-
Honestly, I would strongly suggest to avoid blocking traffic on a geographic basis, these days you never know where traffic will come from and why.
User sitting in the building next to yours but accessing internet from a corporate network may appear as connecting from China.
Legit bot from services you are paying for may appear as crawling from Sweden, and other legit bot you don't even know about but which let you reach additional audience may appear as connecting from the other side of the world.
Blocking traffic is positively dangerous, the only case where I would consider it a good decision is when blocking blacklisted ips, and even this case I would suggest to secure the blacklist is updated regularly to avoid blocking false positive.
-
Eslam - Many great suggestions here of the things you can do right now to help you with these hack attempts. One thing I'd like to add is that we use a service/plugin called Sucuri. We've had good luck with it so far. You can learn more about them here: http://sucuri.net/
Regarding the approach of blocking traffic from other countries, my thought is this. Does traffic from those countries bring any value to you and do you give value to those visitors? If you answer no to this question, then why not block it? For example, a local pizza shop's website in Portland, Oregon probably doesn't care bout web traffic from Lithuania and vice versa.
-
Bulletproof Security is great and has many features to blocking such attempts and making it harder for those scripts that are just constantly scanning for the usual vulnerabilities.
-
theres a wordpress plugin you can use that limits the number of login attempts (I used to use it but I forgot the name of it)
-
Instructions here: https://wordpress.org/support/topic/how-to-change-from-wp-loginphp-to-login
-
It's won't type my password there really. I don't know ...
-
I don't think it's easy to change it because there PHP complicated things that I don't know about. But, I will search for a trusted plugin or something like that. Seems like a good solution.
-
I don't know, it's a very abuse thing to ban traffic from a country. If you are saying these attacks are automated so they are not humans?
-
I've. But, do you think it's enough. I'm talking about that I'm talking with you right now and there's someone right there trying to steal my thing. Hard feeling really.
-
I agree with Massimillano here.
Three things you should do for all common CMS systems (WP, Joomla, ect..)
First change the admin directory to something else. When doing this you likely have to edit configuration files to point to the new location which is pretty simple.
Second protect admin directory with .htaccess & .htpasswd. There is a nice generator I have used on some of my sites in the past here.
Third create a honeypot / auto IP ban for malicious crawlers or script kiddies. There are several plugins for this if you search the keywords honeypot + cms.
-
Change the name of the login page, I mean in addition to having a strong password of course.
Those automated scripts look first for the known wp login page if they don't find it the will give up, if they do they will keep trying forever and ever, an unecessary load for your servers.
-
This is a very common thing. Most of these attacks are automated, coming from China or Eastern Europe. You may consider banning traffic from those countries all together if it's not relevant to you. Change the default admin user name to something else. And do as EGOL recommended - set a really strong password. And then change that password every few months.
-
Make a really strong password.
Got a burning SEO question?
Subscribe to Moz Pro to gain full access to Q&A, answer questions, and ask your own.
Browse Questions
Explore more categories
-
Moz Tools
Chat with the community about the Moz tools.
-
SEO Tactics
Discuss the SEO process with fellow marketers
-
Community
Discuss industry events, jobs, and news!
-
Digital Marketing
Chat about tactics outside of SEO
-
Research & Trends
Dive into research and trends in the search industry.
-
Support
Connect on product support and feature requests.
Related Questions
-
I want to use some content that I sent out in a newsletter and post as a blog, but will this count as duplicate content?
I want to use some content that I sent out in a newsletter a while ago - adding it as a blog to my website. The newsletter exists on a http://myemail.constantcontact.com URL and is being indexed by Google. Will this count as duplicate content?
Content Development | | Wagada0 -
Blog migration
Hi We have 4 websites - 1 for company and 3 for each products. Currently all our blog posts are located on the company website company.com/blog. We will be separating out the blog so that product blogs will be in each product website. i.e. from company.com/blog to: company.com/blog product1.com/blog product2.com/blog product3.com/blog This is with the aim of helping SEO for each of the product websites; and improving user experience so users can easily navigate around the product pages if they are reading a blog post on the product. So now we have to consider migration. We will migrate/copy over all blog posts to each of the relevant product websites, but should we: A. keep the old blog posts on company.com/blog and do a rel=canonical B. only show blog preview on company.com/blog which will link to the new product.com/blog (and using 301 redirect) C. 301 redirect all blog posts from company.com/blog altogether Any suggestions on which of the above options to take would be greatly appreciated in terms of SEO and other considerations
Content Development | | bnulab0 -
From a company perspective; would you recommend using a service like postloop to acquire additional blog comments through paying users.
I’m always hesitant when it comes to purchasing comments but it seems like a natural approach. Is this something that Google would take notice and/or frown upon? - Anything we should avoid? Any additional information would be helpful. Thank you in advance.
Content Development | | Ben-R0 -
Updating blogs - SEO best practice
Thinking of new blog content and one option obviously is to check out historical popular blogposts via Analytics and do fresh versions of those. So my question is what is best practice: 1. Copy and paste the old blogpost copy but edit it to be slightly different while still having the old blogpost live or 2. just update the old one and re-promote I assume it's better to have a new version of the blogpost?
Content Development | | digitalbua1 -
Why is my DA 1?!
Hi all, I blog at www.thebeautyswatch.com and have a dismal DA of 1! Does anyone know why? Thanks, H
Content Development | | HarrietB0 -
Wanted to buy Blog
Hi Everybody, I wanted to buy few blogs of Home improvement, office furniture and artificial flowers.But I do not know from where we can buy blogs.If anyone have idea about this please let me know.
Content Development | | Alick3000 -
I need to feed our companies blog into our facebook business page
Hello can anybody help me. I'm trying to setup a feed from our company blog to our companies facebook page. When I try and Google it the advice is out of date.
Content Development | | catherine-2793880 -
Promoting external blogs on our own
From time to time we're promoting blog posts written by our employees on their external blogs (separate domains) to our official company blog. This happens when the content is valuable for our visitors and it's worth to be shared. The post is copied in its entirety and we add the sentence This post was originally published on <external blog="" post="" link="">at the top. Will this be considered duplicate content? Should we add anything else to the republished blog post? Thanks!</external>
Content Development | | lgrozeva0