login problem

  • Resolved flyfisher842

    (@flyfisher842)


    6 years, 11 months ago

    6/15
    About a month ago an intruder got into one of my sites and got all the user registration information.

    I can see this person running thru the logins all coming from same IP and referrer address. Highly unlikely that my members would all be using the same ip for login.

    There is no login security filter to catch this kind of issue and block any user using this ip and referrer.

    How do I fix this in the custom code

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author AITpro

    (@aitpro)

    6 years, 11 months ago

    Blocking by IP address is not really that effective. Most hackers and spammers use Proxies, VPN’s, Tor Browser, etc. so they can switch to different IP addresses at any time. The Referrer is very easy to spoof so blocking by Referrer is even less effective than blocking by IP address. With that said the htaccess code you are looking for is below. This IP Address blocking code would go in this BPS Custom Code text box: 14. CUSTOM CODE BOTTOM HOTLINKING/FORBID COMMENT SPAMMERS/BLOCK BOTS/BLOCK IP/REDIRECT CODE

    # BLOCK/FORBID IP Addresses
Order Allow,Deny
Deny from xxx.xxx.xxx.xxx
Allow from all
    • This reply was modified 6 years, 11 months ago by AITpro.
    • This reply was modified 6 years, 11 months ago by AITpro.
    Plugin Author AITpro

    (@aitpro)

    6 years, 11 months ago

    Assuming all questions have been answered – the thread has been resolved. If the issue/problem is not resolved or you have additional questions about this specific thread topic then you can post them at any time. We still receive email notifications when threads have been resolved.

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘login problem’ is closed to new replies.