high load due to wordpress sites beeing attacked

[VNE]

I was wondering how you guys are handling the massive amount of attacks again wordpress sites?

What I've tried so far:
* I've looked for way to throttle calls to wp-login.php, but couldn't find any decent solution.
* I know there is a fail2ban plugin for Wordpress, but I can't install this plugin for every client who installed Wordpress ...
* I'm using cloudlinux and have been experimenting with the max connections, max cpu and etcetera. But the limits i need to set to keep gallery websites able to run (up to 100+ php calls for a single gallery page ) are actually way too high to have any effect on the wp-login attacks.

 

[Active8]

Install Wordfence plugin en your done

 

[zEitEr]

Hello,

Brute Force Monitor from Directadmin can now scan the Apache domain logs for WordPress wp-login.php attacks.

http://www.directadmin.com/features.php?id=1695


- I need a firewall. What are my options?
http://help.directadmin.com/item.php?id=527

- Detecting and preventing brute force login attacks
http://help.directadmin.com/item.php?id=404

 

[LawsHosting]

Install Wordfence plugin en your done

Of course, but how does that help the host though?

It's the client's responsibility to install plug-ins, we can only offer advice - like when we deploy a VPS, we can only advise them to change the SSH password and/or port, whether they take the advice is another story.

 

[VNE]

i'm using CSF/LFD firewall, so I ended up using this cron:

*/5 * * * * grep -h "POST /wp-login.php" /var/log/httpd/domains/*.log | awk '{print $1}' | sort -n | uniq -c | sort -nr | while read count ip ; do if [ $count -gt 20 ]; then echo $ip; fi;done | while read x ; do csf -d $x ; done

 

[Hostingtg]

VNE, very good idea, i added to servers