Hi RSP,
I'm using Cloudflare as cdn for my wordpress, as you know cloudflare act as a proxy.
Although I turn on mod_security, but recently several of my sites still under brute force attempt to wp-login.php. I have about 10 wordpress site, due to configuration, I cannot use .htpasswd, so my the only option is limit the access ip, but I'm using dynamic ip, it's difficult and troublesome for me to edit the ip everytime I want to login to wp-admi area.
I wondering whether RSP can consider install mod_cloudflare https://www.cloudflare.com/resources...mod_cloudflare so that in mod_security can reveal the real ip instead of cloudflare ip. Because it show only cloudflare ip, I cannot block those attacks from particular ip, which I don't know where they came from.
It has been 2 days my blogs are under attack, and I've set cloudflare security settings to I'm under attack, but unfortunately cloudflare did not detect any threat.
So I believe finding a way to reveal the real ip where the attack come from is an alternative solution.
Besides that, how to increase the mod_security blocking time from 15 minutes to longer?
Please advice alternative solutions?
Thank you.
I'm using Cloudflare as cdn for my wordpress, as you know cloudflare act as a proxy.
Although I turn on mod_security, but recently several of my sites still under brute force attempt to wp-login.php. I have about 10 wordpress site, due to configuration, I cannot use .htpasswd, so my the only option is limit the access ip, but I'm using dynamic ip, it's difficult and troublesome for me to edit the ip everytime I want to login to wp-admi area.
I wondering whether RSP can consider install mod_cloudflare https://www.cloudflare.com/resources...mod_cloudflare so that in mod_security can reveal the real ip instead of cloudflare ip. Because it show only cloudflare ip, I cannot block those attacks from particular ip, which I don't know where they came from.
It has been 2 days my blogs are under attack, and I've set cloudflare security settings to I'm under attack, but unfortunately cloudflare did not detect any threat.
So I believe finding a way to reveal the real ip where the attack come from is an alternative solution.
Besides that, how to increase the mod_security blocking time from 15 minutes to longer?
Please advice alternative solutions?
Thank you.
Comment