- This topic is empty.
-
AuthorPosts
-
October 14, 2012 at 10:22 pm #828844
wbprofitsMemberalso when using a password dont use a normal word !
use a pw generator ! they are much harder to brute force than a lame dictionary word/phrasez8p3u9%#T~zkUTv is alot better then casinosite
and IP 195.190.13.158 from Ukraine rents servers by the week
also if a ip keeps trying to get in why not turn the light bulb on and server/host ban them ?
October 15, 2012 at 2:56 pm #828856
voodoomanMember@rmeeuwsen 245737 wrote:
After 2 hacking experiences of last week I installed a plugin that shows me when someone tries to access my worpress site as ‘admin’
What is the name of the plugin that you’re using for this?
October 15, 2012 at 4:18 pm #828860Anonymous
InactiveOne plugin that does that is ‘wordfence’
It’s also interesting to see ‘human’ traffic.
Be sure to review the options for settings tweaks if you want to use it.PS – Another blocked IP 5.39.218.135 Netherlands
October 15, 2012 at 4:24 pm #828861Anonymous
Inactivefew siomple things.. make sure your cpanel or server side is an insanely large password thats all gibberish. There are items for cpanel to blacklist / whitelist all access to this as well.
Second, if your using wordpress or any other “standard” system know there are thousands of people that know what is in your folders, admicp folder should be LOCKED at the server level, IE you should need to enter a username and password setup in yout .htaccess before you cna log into the admincp, and you should really not use the directory admicp at all, rename it to something like skoobydooadmin/ and still lock it down.
October 16, 2012 at 2:27 pm #828919Anonymous
Inactive@allfreechips 245761 wrote:
few siomple things.. make sure your cpanel or server side is an insanely large password thats all gibberish. There are items for cpanel to blacklist / whitelist all access to this as well.
Second, if your using wordpress or any other “standard” system know there are thousands of people that know what is in your folders, admicp folder should be LOCKED at the server level, IE you should need to enter a username and password setup in yout .htaccess before you cna log into the admincp, and you should really not use the directory admicp at all, rename it to something like skoobydooadmin/ and still lock it down.
Great advice!!!
October 18, 2012 at 8:48 am #829035Anonymous
InactiveI have this link bookmarked for whenever I need a new password:
Security Guide for Windows – Random Password GeneratorTick the ‘Include Punctuation’ box and you’re extra safe.
October 18, 2012 at 9:09 am #829037
miwibdvxghrtMemberI think you need to change administrator user name. I would suggest you to use “Better WP Security” plugin and configure it manually. It works fine for me.
-
AuthorPosts