Bypass the block

  • Dascent

    (@dan-nita)


    9 years, 11 months ago

    Hello, first I want to congratulate the team for this awesome plugin.
    Second, I wish to suggest a small improvement regarding the unlock by email function/option page because the malicious visits (bots,hackers) bypass the
    /?_wfsf=unlockEmail and blocking function becomes useless.
    Maybe a captcha or something similar next to the unblock by email field/button will slow down the automated process of bypassing the blocked.
    Unfortunately I had to block an entire network (IP range) originating from colocrossing.com service and the live traffic is showing the blocked IP, followed by the same IP but unblocked accessing the /?_wfsf=unlockEmail link/page.
    Fortunately for me I use another plugin which allows me to add the malicious visit/IP and redirect them to an external url… that’s the only way I could find to throw some punches back.
    Thank you
    Dan N

    https://ww.wp.xz.cn/plugins/wordfence/

Viewing 1 replies (of 1 total)
  • mountainguy2

    (@mountainguy2)

    9 years, 11 months ago

    FYI, I blocked nearly all colocrossing IP numbers in my server firewall quite a while ago, really helped with everything. Those guys are a joke.

    Thanks for the heads up on the unlock by email Wordfence bot attack vector. I didn’t like that and removed the link from the “blocked” information page, which has way too much information on it IMHO.

    MTN

Viewing 1 replies (of 1 total)

The topic ‘Bypass the block’ is closed to new replies.

Tags