This article follows a comment asking if an IP address that visits almost 600 times in the <span style="background-color: #e9eef3; font-color: #000000 font-size; font-family: Arial,Tahoma,Verdana; text-shadow: #fff 1px 1px;">wp-login.php</span> page (which is the
login page of the WordPress Administration) of her blog was well a hacking attempt.
It was a brute-force attack of finding a password by trying all possible combinations. When the password is relatively complex, there is virtually no chance to penetrate it, whereas if it consists of little letters, the risks increase dramatically.
Here are two very simple but daunting methods those will protect your blog from an attack of this type without any problems.
Ban the IP, if you are able to know and to see a live IP attacks you, you can banish and prevent access to your blog by adding this code to <span style="background-color: #e9eef3; font-color: #000000 font-size; font-family: Arial,Tahoma,Verdana; text-shadow: #fff 1px 1px;">.htaccess</span> file at the root your server:
---
order <span style="color: #00ff00;">allow</span>,<span style="color: #ff0000;">deny</span><span style="color: #ff0000;">deny</span> from 180.0.0.1<span style="color: #ff0000;">deny</span> from 180.0.0.2<span style="color: #ff0000;">deny</span> from 180.0.0.3<span style="color: #00ff00;">allow</span> from all
Where are the 180.0.0.1/2/3 IP to be banned. This solution is very effective at the moment but still temporary since hackers often have different IP addresses.
The WordPress plugin Limit Login Attempts which blocks X minutes for a person who was mistaken the password for X time when attempting to access the blog administration. After X crashes, this person will be blocked again for X hours. The Administrator may also be notified by email of the hacking attempt.
Tagged With wordpress ban ipv6 addresses