Add perm IP ban to CFS for Joomla admin attack?

webjive · November 11, 2015, 2:09pm

We have been mitigating DDOS attacks for about a month now for a client site and they have now turned their attention to the Joomla admin login screen. What they are doing now is overwhelming the server with Joomla login attempts which Comodo WAF is catching, then throwing a 403 error but, thats still causing high loads on Apache.

Is there a way to tweak the Joomla admin rule so that after XX number of attempts their IP is added to the CSF deny list?

Thanks!

oleg.tsygany · November 11, 2015, 3:34pm

No we don’t integrate with CSF but I think you can setup CSF so it will block these attacks.

Regards, Oleg

TDmitry · November 30, 2015, 11:13am

We are planning to make some improvements in this area, so check for news and updates.

brijendrasial · December 1, 2015, 9:08am

CSF already have that functionality.
https://www.diigo.com/item/image/530tf/x09c