Support Login

  By Month

Jan 2023 Nov 2022 Jun 2022 Apr 2022 Oct 2021 Sept 2021 Jul 2021 Jun 2021 Apr 2021 Mar 2021 Older Announcements...   View RSS Feed

  By Month

  Support

  My Support Tickets   Announcements   Knowledgebase   Downloads   Server Status   Open Ticket

WordPress Login Attack

  • Friday, 12th April, 2013
  • 08:18am
*** UPDATE *** 4-17-2013

We have made a less invasive configuration change, so the .htaccess rules we previously recommended should no longer be used.


--------------------------


As you may have heard, there is currently a distributed attack against WordPress logins globally that is trying to hack WordPress installations by brute forcing the logins "wp-login.php" file.

Since this is a large and distributed attack, it is very serious and it's impact has been resulting in slow services.

Therefore we are doing our best to mitigate the impact by limiting access to WordPress logins.

In order to access your WordPress login, please do the following:

In your /public_html folder, create a text file (if one does not already exist) and name it ".htaccess"

Add the following text to the file:


Order deny,allow
Deny from all
Allow from x.x.x.x

You will need to replace x.x.x.x with your current IP address.

Not sure what your current IP is? Go to Google.com and type "what is my ip?"


« Back

  Support

  My Support Tickets   Announcements   Knowledgebase   Downloads   Server Status   Open Ticket