I have a plugin, which works perfectly, and I think is called Firewall. It just notified me of an attempted (but, so far) blocked hack on a site. I have limited login attempts and used other plugin security measures, butvwantbto make sure this sortvof hack cannot be successful in the future… These are the details:
WordPress Firewall has detected and blocked a potential attack!
Offending IP: 194.177.98.178 [ Get IP location ]
Offending Parameter: src = ../../../../../../../../../../../../../../proc/self/environ
This may be a “Directory Traversal Attack.”
Types of Offensive Actions by 194.177.98.178
Offensive requests Bug searches, Proxy attempts, Proxy searches, Hacking attempts, Useless requests for site advertising purposes, DoS, etc. Samples may include (longer lines truncated)
GET /odb/main.php?pg=../../../../../../../../../../../../../../proc/self/environ
GET /odb/index.php?option=com_user&view=reset&layout=confirm
GET /stats/index.php?page=../../../../../../../../../../../../..
Aside from blocking this address in .htaccess, is there some general setting that belongs in .htaccess or elsewhere to totally insure against such attacks?
I’m writing from a mobile device, and am in transit today, so please pardon typos. Thanks for any help!
.
