Post · bonfire.cafe

A really interesting lightning talk about attacks on WordPress. This is something I've been working to mitigate lately by building my own monitoring. Cloudflare, automatic access.log monitoring, and fail2ban are your friends. She paints a bigger picture in her talk.
https://wpsuomi.fi/schedule/war-on-wordpress-part-2/

#WPSuomi #wpfi

Lisa-Marie Karvonen talking about attacks on WordPress at WP Suomi auditorium at Haaga Helia University

Susan from NeuStudio

@SueNeu@fosstodon.org replied · last month

@rolle Thank you for sharing this- I’m reviewing customer security now. DYK Will they be posting this to Wordpress.tv?

Eva Mikkonen

@evamik@uwu.mikkonen.com replied · last month

@rolle Been doing similar hardening, syslog is also a friend if certain WP endpoints like login must be exposed in public, and using syslogged breach attempts to talk with CF firewall endpoints to block offenders before they reach origin servers on some customer projects

Roni Rolle Laukkarinen

@rolle@mementomori.social replied · last month

@evamik wp-login ratelimiting should be the default everywhere. Seeing so many brute force / dictionary attacks every day.

Eva Mikkonen

@evamik@uwu.mikkonen.com replied · last month

@rolle Sames, latest issues I've seen have come from AI scrapers that do weird stuff on Woocommerce, like repeatedly adding a product to the cart several times in a second and doing those operations for hours till I just blocked the whole AS number of the network, because it was not covered by Cloudflare's known list of scrapers

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

bonfire.cafe: About · Code of conduct · Privacy · Users · Instances

Bonfire social · 1.0.0 no JS en

Automatic federation enabled