Author Topic: Attacks on wp-login.php  (Read 446 times)

Offline needsomehelp

  • Comodo Loves me
  • ****
  • Posts: 108
Attacks on wp-login.php
« on: August 15, 2018, 07:55:50 AM »
Hi since the latest update i am getting attacks on wp-login.php anything i can do to stop this.

Offline SergeiP

  • Moderator
  • Comodo Loves me
  • *****
  • Posts: 198
Re: Attacks on wp-login.php
« Reply #1 on: August 15, 2018, 12:07:03 PM »
Hi needsomehelp.
Please provide information about your web server, hosting panel, modsecurity, CWAF plugin and CWAF rules versions.
You can enable Bruteforce protection which disabled by default.

Offline needsomehelp

  • Comodo Loves me
  • ****
  • Posts: 108
Re: Attacks on wp-login.php
« Reply #2 on: August 15, 2018, 02:09:16 PM »
Hi needsomehelp.
Please provide information about your web server, hosting panel, modsecurity, CWAF plugin and CWAF rules versions.
You can enable Bruteforce protection which disabled by default.

Capenl server not using plugin it's installed via WHM not sure what version but it updated in the last few days and now this happens. everything is enabled ?

Offline SergeiP

  • Moderator
  • Comodo Loves me
  • *****
  • Posts: 198
Re: Attacks on wp-login.php
« Reply #3 on: August 16, 2018, 11:29:53 AM »
How did you know that you under attack?
If you don't use any previously saved excludes file ( /usr/local/cwaf/etc/httpd/global/zzz_exclude_global.conf) then all rules protections will be enabled by default work of modsecurity will freeze your server. Also logs sizes will grow.


I recommend you to install CWAF plugin v2.23

Offline needsomehelp

  • Comodo Loves me
  • ****
  • Posts: 108
Re: Attacks on wp-login.php
« Reply #4 on: October 31, 2018, 01:40:51 PM »
How did you know that you under attack?
If you don't use any previously saved excludes file ( /usr/local/cwaf/etc/httpd/global/zzz_exclude_global.conf) then all rules protections will be enabled by default work of modsecurity will freeze your server. Also logs sizes will grow.

I know because sometimes i get an high server load and it's attacks to links like this below
wp-content
wp-admin


Offline SergeiP

  • Moderator
  • Comodo Loves me
  • *****
  • Posts: 198
Re: Attacks on wp-login.php
« Reply #5 on: November 12, 2018, 11:11:08 AM »
CWAF rules has DoS protection. It disabled by default and should be enabled only when it needed.

Offline needsomehelp

  • Comodo Loves me
  • ****
  • Posts: 108
Re: Attacks on wp-login.php
« Reply #6 on: December 10, 2018, 06:44:52 AM »
CWAF rules has DoS protection. It disabled by default and should be enabled only when it needed.

Where do i find that ?

Offline SergeiP

  • Moderator
  • Comodo Loves me
  • *****
  • Posts: 198
Re: Attacks on wp-login.php
« Reply #7 on: December 11, 2018, 11:09:59 AM »
You can find it in file:
11_HTTP_HTTPDoS.conf

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek