Recently I have many problems with DDoS & brute force attacks on my site. Why somebody do this? I really don’t know, but it doesn’t matter really. What is important is to secure website from these malicious acts.
To improve your website security there are many steps you can take, but like many, either by laziness or short on time people skip these steps.
If you don’t want to go under the hood and take matters in your hands I suggest you to download and install this plugin – iThemes Security for WordPress and let the plugin do job for you.
Sure, you’ll have to set some basic things about your WordPress site, but it is all in one place. You don’t have to go through your hosting account, or looking .htaccess or some other files or folder on it.
Email from iThemes Security
Dear Site Admin,
A host, 173.xxx.219.168, has been locked out of the WordPress site at http://www.xxxxxxxxxx.com due to too many attempts to access a file that does not exist.
The host has been locked out until 2014-10-19 07:00:13 .
*This email was generated automatically by iThemes Security. To change your email preferences please visit the plugin settings.
All things you should care about are placed inside iThemes Security Dashboard.
On the picture I have shared you can see email I get from this plugin saying about attacks on my site. They are real and they come every day. This plugin has improved my site security and I don’t need to worry like I did before. Danger is still present but not like it was before.
One more thing – what I did to get rid of these DDoS attacks is that I have replaced my DNS by CloudFlare DNS records.
Like they say:
Protect your website from a range of online threats from spammers to SQL injection to DDOS.
It is true. DDoS are past tense for me now.
Update after a while – iThemes Security is a plugin I still use and it gives me nice night sleep. My site is working without any problems and in case someone trying something I get email report.
For anyone who is looking to secure WordPress site I recommend this plugin. By default you will get basic protection, and in case you know what you are doing there are many advanced options. Keep in mind this plugin gives a lot in his free version.