Knowledgebase

Portal Home > Knowledgebase > Articles Database > Litespeed + CWAF = brute force?

Litespeed + CWAF = brute force?

Posted by zipstar, 02-12-2015, 12:31 AM

Hello, I am just wondering if anyone has successfully got either a custom modsecurity rule or CWAF rules working for litespeed to block wordpress brute force attacks? I cant for the life of me get it working Really frustrating. Any suggestions are really appreciated.

---

Posted by david_was_here, 02-13-2015, 01:05 PM

I believe Wordpress has plugins to stop the brute force attacks (assuming you're talking about the Admin page). You could also set up an .htaccess to block all and allow only from specified IP addresses or set up just a password and username login prompt (w/ .htaccess+.htpasswd) for the wp-admin directory. You can even do both. Edit: Here's a link to all plugins with a brute force tag: https://wordpress.org/plugins/tags/brute-force Last edited by david_was_here; 02-13-2015 at 01:06 PM. Reason: Added Link

---

Posted by AdroitSSD LLC, 02-13-2015, 01:12 PM

Just follow this, it's work successfully with litespeed to stop wp login brute force.

---

Add to Favourites    Print this Article

need a little help with htaccess redirect code (Views: 697)

Whether to go on-premises or hire a private cloud ? (Views: 761)

Red Alert! ResellerZoom/HostingZoom Server Migration Problem! (Views: 703)

Different drive sizes (Views: 719)

Installing Security Certificate Rapid SSL and CherryPy Web Server (Views: 732)