[wp-hackers] Limit Login Attempts
Paolo Tresso
paolo.tresso at swergroup.com
Wed Apr 17 16:07:44 UTC 2013
On 17/04/2013 11.30 -0400, Chris Williams wrote:
> But... A central service, with a view of this problem across the world,
> can make a huge difference.
If you're looking for an external service to deal with this, like
Akismet for spam, you should have a closer look at cloudflare.com or
incapsula.com.
Cloudflare is mostly CDN-oriented while Incapsula is more
security-focused: both deals with this kind of threats at the right
level, the DNS one.
They are a cheap/cloudy way to do what you should be doing in a
dedicated environment: put some filter/proxy/caching between your
webserver and the internet, and let it filter out the bad.
Bonus:
Cloudflare is known for working with hosting and service providers to
support and debug their filtering.
That's it: both services leverages their network to identify and block
suspects and/or bad behaviours *before* they can reach WordPress, acting
on the external DNS level instead of taking actions from inside WP.
Hope it helps.
Paolo Tresso
Lead Developer
SWERgroup
http://swergroup.com
http://profiles.wordpress.org/swergroup
More information about the wp-hackers
mailing list