Question about failed login redirection | ww.wp.xz.cn

Resolved tomdkat
(@tomdkat)

10 years, 3 months ago

Hi! I’ve noticed some failed login attempts in my WordPress logs with a redirect to another domain entirely.

So, instead of a redirect entry like this:

Login Redirect: http://www.mydomain.com/blog/wp-admin/
User Agent: {blah}

I see entries like this:

Login Redirect: http://[removed]/wp-admin/
User Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)

Is this a hacker or script trying to exploit some vulnerability of some kind?

Thanks!

Viewing 3 replies - 1 through 3 (of 3 total)

Moderator James Huff
(@macmanx)

10 years, 3 months ago

I suspect it’s just a bot hitting a list of domains and moving on after failure.

What happens to you if you enter the wrong info? Are you redirected to the other domain?

Thread Starter tomdkat
(@tomdkat)

10 years, 3 months ago

Thanks for the reply! If I enter bad login information, I remain at http://www.mydomain.com/blog/wp-login.php, which is what I expect. In the log, I see the redirect to http://www.mydomain.com/blog/wp-admin.

So, I think everything’s ok, with my WordPress installation, but I was caught off guard by the reference to that other domain.

Thanks again and Happy New Year!

Moderator James Huff
(@macmanx)

10 years, 3 months ago

You’re welcome!

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Question about failed login redirection’ is closed to new replies.

In: Fixing WordPress
3 replies
2 participants
Last reply from: James Huff
Last activity: 10 years, 3 months ago
Status: resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics