I got so much "POST /wp-login.php HTTP/1.0" 200 3877 "-" "-"

qiuai · Oct 24, 2014

I got so much "POST /wp-login.php HTTP/1.0" 200 3877 "-" "-"

What I can do?

Normally they do this for one hour , sometime to 2 days.

It made me crazy..

Please help me . Thanks.

SeLLeRoNe · Oct 25, 2014

Well probebably someone is tryint to hack your WP site.

I suggest you to intsall this plugin: https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/

Regards

qiuai · Oct 25, 2014

Thanks,but I need a system-level solutions.Like how to configure the CSF.of Fail2ban.etc.
I can't let all my customers to install this plugin..

SeLLeRoNe · Oct 25, 2014

Well, is not a system-level problem and yes you can definitly suggest your customers to increise their website security suggesting them this free plugin.

CSF doesnt check failed attempt on Wordpress, so he will not be able to check that, the most he can "notice" there would be multiple connection, but is not so sure that they are doing multiple connection ad the same time.

Regards

qiuai · Oct 25, 2014

Can I deny all the connect that User Agent is "-" ?
And how?
I don't know how to make the .htaccess for everyone.....
Thanks.

I got so much "POST /wp-login.php HTTP/1.0" 200 3877 "-" "-"

qiuai

Verified User

SeLLeRoNe

Super Moderator

qiuai

Verified User

SeLLeRoNe

Super Moderator

qiuai

Verified User