Group Admins

WordPress Troubleshooting and Support

Public Group active 1 year, 2 months ago ago

WordPress support from our community

WordPress site attempted hack

Viewing 1 post (of 1 total)
  • Author
    Posts
  • #1144
    Jeanne
    Participant

    I have a plugin, which works perfectly, and I think is called Firewall. It just notified me of an attempted (but, so far) blocked hack on a site. I have limited login attempts and used other plugin security measures, butvwantbto make sure this sortvof hack cannot be successful in the future… These are the details:

    WordPress Firewall has detected and blocked a potential attack!
    Offending IP:   194.177.98.178 [ Get IP location ]
    Offending Parameter:   src = ../../../../../../../../../../../../../../proc/self/environ

    This may be a “Directory Traversal Attack.”

    Types of Offensive Actions by 194.177.98.178
    Offensive requests Bug searches, Proxy attempts, Proxy searches, Hacking attempts, Useless requests for site advertising purposes, DoS, etc. Samples may include (longer lines truncated)
    GET /odb/main.php?pg=../../../../../../../../../../../../../../proc/self/environ
    GET /odb/index.php?option=com_user&view=reset&layout=confirm
    GET /stats/index.php?page=../../../../../../../../../../../../..

    Aside from blocking this address in .htaccess, is there some general setting that belongs in .htaccess or elsewhere to totally insure against such attacks?
    I’m writing from a mobile device, and am in transit today, so please pardon typos. Thanks for any help!

Viewing 1 post (of 1 total)
  • You must be logged in to reply to this topic.