NEWS FLASH A Day in the Life of Nerd Vittles

wardmundy

Nerd Uno
Joined
Oct 12, 2007
Messages
15,234
Reaction score
2,666
Just thought I'd post a day's worth of info from Wordfence showing what it takes to keep a blog up and running these days. Some of the Bad Guys' List may surprise you...

 
  • Like
Reactions: briankelly63

tycho

Guru (not...)
Joined
Aug 9, 2011
Messages
594
Reaction score
229
Piffle. Not really different from the intrusion map I see on any run-of-the mill cloud server that I ever install. What's the surprise? That the US is so well-represented? FWIW I don't see that as surprising I guess.

(I've been using UFW rather than IPTables on some non-PBX, throw-away servers lately. It (1) is super easy, (2) works quite well, and (2) is hammered several times a second literally from the time it goes active. )
 
  • Like
Reactions: wardmundy

wardmundy

Nerd Uno
Joined
Oct 12, 2007
Messages
15,234
Reaction score
2,666
Gotta love these creeps...

Code:
The Wordfence Web Application Firewall has blocked 122 attacks over the last 10 minutes. Below is a sample of these recent attacks:

March 2, 2018 7:19pm  5.77.39.68 (United Kingdom)     Blocked for SQL Injection in query string: page_id=24540%' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL-- lVmc
March 2, 2018 7:19pm  5.77.39.68 (United Kingdom)     Blocked for SQL Injection in query string: page_id=24540%' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL-- dZGC
March 2, 2018 7:19pm  5.77.39.68 (United Kingdom)     Blocked for SQL Injection in query string: page_id=24540%' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL-- gBjN
March 2, 2018 7:19pm  5.77.39.68 (United Kingdom)     Blocked for SQL Injection in query string: page_id=24540%' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL-- nKnn
March 2, 2018 7:19pm  5.77.39.68 (United Kingdom)     Blocked for SQL Injection in query string: page_id=24540%' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL-- LEEJ
March 2, 2018 7:19pm  5.77.39.68 (United Kingdom)     Blocked for SQL Injection in query string: page_id=24540%' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL-- Cpwz
March 2, 2018 7:19pm  5.77.39.68 (United Kingdom)     Blocked for SQL Injection in query string: page_id=24540%' UNION ALL SELECT NULL,NULL,NULL,NULL-- MetD
March 2, 2018 7:19pm  5.77.39.68 (United Kingdom)     Blocked for SQL Injection in query string: page_id=24540%' UNION ALL SELECT NULL,NULL,NULL-- WGWo
March 2, 2018 7:19pm  5.77.39.68 (United Kingdom)     Blocked for SQL Injection in query string: page_id=24540%' UNION ALL SELECT NULL,NULL-- FVqD
March 2, 2018 7:19pm  5.77.39.68 (United Kingdom)     Blocked for SQL Injection in query string: page_id=24540%' UNION ALL SELECT NULL-- NgiD
 

hawk#1

Active Member
Joined
Nov 3, 2015
Messages
108
Reaction score
37
I took my sites down a few years back because I lost interest in spending all my free time trying to stay one step ahead. I also found it rather difficult to control my temper and call them little creeps instead of what I really think of them. I appreciate everyone that shares and helps others learn. You run the site to help others and the expense comes out of your pocket. I can't understand the logic behind crashing sites that are online to help others. :banghead:
 

AndyInNYC

Active Member
Joined
May 23, 2013
Messages
619
Reaction score
83
Ward,

Your selected list of attempts uses the same IP address. Doesn't your system give them a lifetime ban at some point and just ignore the attacking IP?

Andrew
 
Joined
Jan 13, 2016
Messages
50
Reaction score
22
@AndyInNYC

WordPress plugins cannot (by default at least) ban IPs at protocol level. Requests are just being blocked, which means an attacker will still be able to send requests but they won't get any response back other than they have been blocked. This is a good out of the box mitigation for common attacks such as SQL Injection.

One could easily however make an integration with fail2ban to block ips in iptables.
 
  • Like
Reactions: wardmundy

Members online

PIAF 5 - Powered by 3CX

Forum statistics

Threads
22,448
Messages
138,012
Members
14,613
Latest member
roshan2019