Hello,
One of the Drupal 7 sites we maintain is getting hit with a lot of 404 Page Not Found errors for this particular page:
wp-login.php
which is obviously somebody trying to probe for a weakness. It would be nice to block any IP address hitting on this page, given the high probability it is malicious.
Does anybody know of a method to block people sending these ridiculous page requests?
The Restrict IP module seems to not be able to do this, as it creates a whitelist for user access:
https://www.drupal.org/project/restrict_ip
Also, what if I was able to discover that these requests were coming from one bad user. Then I could just block one user, and that should be easy. How can I find the IP address of this user?
thanks
Comments
My response may raise more
My response may raise more questions than answers, but I would try to stop these on the server level. Do you have a hosting provider? They may be able to blacklist IPs (or even have software that does this automatically if it notices unusual activity). You may also consider getting a free subscription to CloudFlare.
I hope that helps.
solution
hi,
visit this site you get the required module::
https://www.drupal.org/node/599512
...
...
spritefully yours
Technical assistance provided to the Drupal community on my own time ...
Thank yous appreciated ...