Comments - Watching for Malicious Bots - TechHui2024-03-28T12:03:52Zhttp://www.techhui.com/profiles/comment/feed?attachedTo=1702911%3ABlogPost%3A81219&xn_auth=noA moderately sophisticated at…tag:www.techhui.com,2011-05-12:1702911:Comment:821102011-05-12T04:12:28.013ZBrianhttp://www.techhui.com/profile/Brian268
A moderately sophisticated attacker will be using enough IP ranges that this alone will not be effective.
A moderately sophisticated attacker will be using enough IP ranges that this alone will not be effective. Thanks for that tip on "Passw…tag:www.techhui.com,2011-05-03:1702911:Comment:817392011-05-03T17:55:49.400ZMarcus Sortijashttp://www.techhui.com/profile/MarcusSortijas
Thanks for that tip on "Password Protect Directories." I think using cPanel for security is a good idea. With plugins, you don't know how they're changing the code. On a more mundane level, plugins often stop being actively developed. Meanwhile, hackers never rest.
Thanks for that tip on "Password Protect Directories." I think using cPanel for security is a good idea. With plugins, you don't know how they're changing the code. On a more mundane level, plugins often stop being actively developed. Meanwhile, hackers never rest. Thanks for the kind words, Ma…tag:www.techhui.com,2011-05-03:1702911:Comment:817352011-05-03T17:39:32.038ZKaren Chunhttp://www.techhui.com/profile/KarenChun
<p>Thanks for the kind words, Marcus. Another thing I do when I have a single individual using Wordpress (this does NOT work for Buddypress or any multiuser installation) is to use "Password Protect Directories" from Cpanel to make the entire wp-admin directory off-limits.</p>
<p>It means that the wp-admin user has to enter 2 sets of user-pw (usually I make them the same) but it insures that if another Wordpress vulnerability is found, that installation can't be hacked anyway.</p>
<p>That last…</p>
<p>Thanks for the kind words, Marcus. Another thing I do when I have a single individual using Wordpress (this does NOT work for Buddypress or any multiuser installation) is to use "Password Protect Directories" from Cpanel to make the entire wp-admin directory off-limits.</p>
<p>It means that the wp-admin user has to enter 2 sets of user-pw (usually I make them the same) but it insures that if another Wordpress vulnerability is found, that installation can't be hacked anyway.</p>
<p>That last vulnerability (at the beginning of the year) wasn't discovered and corrected until after many, many wordpress installations were hacked, so this has become routine for me when I install single-user Wordpress.</p> Karen, thanks for writing thi…tag:www.techhui.com,2011-05-03:1702911:Comment:814232011-05-03T00:50:52.381ZMarcus Sortijashttp://www.techhui.com/profile/MarcusSortijas
Karen, thanks for writing this! I've been concerned about security, I build WordPress websites. I'm cautious of using security plugins or editing code, because I don't want to mess anything up. Your method of using cPanel to find and block suspicious IP addresses looks like a safer route to take.
Karen, thanks for writing this! I've been concerned about security, I build WordPress websites. I'm cautious of using security plugins or editing code, because I don't want to mess anything up. Your method of using cPanel to find and block suspicious IP addresses looks like a safer route to take.