Jump to content
thirty bees forum

Is 6G Firewall appropriate for thirtybees


cprats

Recommended Posts

  • 1 year later...

A follow up on this original post.  My WordPress multisite installations were performing really slow at times.  I logged in to cPanel and saw CPU usage hovering at 99%.  It turns out there were targeted login attempts at the WordPress login wp-login.php with random user names and passwords.  Banning an IP worked for a little while, then the attacks started again from a different IP.  I ended up installing the All in One WP Security & Firewall plugin. This plugin provides various options to customize the .htaccess file, including the 6G firewall rules mentioned in the original post. Since it was installed, all has worked fine and I can see in logs where the plugin shut down the persistent login attempts.  It is setup so that after a set number of failed attempts, the request is redirected to 127.0.0.1 to take the load off the site.

This got me wondering - Is there are similar set of rules that might be applied to the Thirty Bees shop login?  I don't know if the shop install I have running on the same domain as the WordPress multisite install has been subject to the same type of attacks, but would feel better if I knew this protection existed.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...