1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Are your site been attack by bot?

Discussion in 'Blogging' started by Devilfish1688, Mar 1, 2016.

  1. Devilfish1688

    Devilfish1688 Senior Member

    Joined:
    Sep 30, 2013
    Messages:
    878
    Likes Received:
    45
    Gender:
    Male
    recently my site attack by bots....i also don't know why ...

    I also not expert on this , speak to my host provider they just show me some informations , datas but I not technically expert on database etc...as they told me find deveopler for help but they also provide some helps for me self figure out.

    how you all prevent bots from attack your site?

    I read up , in fact is " dangerous to remove all bots " as one bot is google which index your site. hmmm...
     
  2. roadhamster

    roadhamster Regular Member

    Joined:
    Mar 12, 2012
    Messages:
    340
    Likes Received:
    244
    Do you have access to your logfiles? I guess so, so filter out the unwanted bots by IP or useragents. You can create a .htacces file or write a php script which will block these bots from accessing your site. Google it, all the info is already there. http://lmgtfy.com/?q=block+bots+with+htaccess
     
  3. bigbrothers

    bigbrothers Regular Member

    Joined:
    Jul 15, 2014
    Messages:
    391
    Likes Received:
    80
    Gender:
    Male
    Occupation:
    Seo Company
    If the attack is coming from the same IP number each time (or a small set of IP numbers) you should block that IP number in your firewall.

    Aside from the IP blocking, I would scrutinize the files that are being requested. It's a fairly common thing for open-source systems such as WordPress and Joomla to be exploited, which is one reason why they're frequently updated. If you've neglected a few updates, it's possible that someone has penetrated your site.

    Try keep updating the required things to prevent from bot. - BB
     
  4. Devilfish1688

    Devilfish1688 Senior Member

    Joined:
    Sep 30, 2013
    Messages:
    878
    Likes Received:
    45
    Gender:
    Male
    well my site so far never get hack...
    next I always update my WP and plugins inside.
    hmm ..
     
  5. collegeguys4

    collegeguys4 Junior Member

    Joined:
    Feb 25, 2016
    Messages:
    124
    Likes Received:
    15
    Occupation:
    computer engineer
    Location:
    New York
    Home Page:
    if you have commandline access you can use iptables to filter ip addresses. I also have a setup that auto blocks bot ip addresses based on their access activity. this system is a Perl based system
     
  6. MuayThai

    MuayThai Jr. VIP Jr. VIP

    Joined:
    Aug 25, 2015
    Messages:
    610
    Likes Received:
    182
    Prevent your site from hacking, not from bots visits.
     
  7. clevelandslim

    clevelandslim Jr. VIP Jr. VIP

    Joined:
    Nov 15, 2008
    Messages:
    1,917
    Likes Received:
    189
    May be the attack is coming from same ip
     
  8. S2Term

    S2Term Junior Member

    Joined:
    May 6, 2014
    Messages:
    138
    Likes Received:
    56
  9. Zwielicht

    Zwielicht Moderator Staff Member Moderator Jr. VIP

    Joined:
    Aug 31, 2013
    Messages:
    7,098
    Likes Received:
    12,498
    Gender:
    Male
    Occupation:
    Reaper
    Location:
    Riverside, California
    Home Page:
    What kind of bots are they?

    Some bots, such as Google web bots, are ones you want to allow as you've already figured out.

    On the other hand, some referrer spam (not the ghost variant) and other malicious bots that hit your website are ones you clearly want to block.

    You can try creating a whitelisting certain IP addresses, blacklisting others, or use S2Term's suggestion above.
     
  10. onlineonly

    onlineonly Power Member

    Joined:
    Jul 27, 2014
    Messages:
    612
    Likes Received:
    287
    Location:
    online
    On some of my sites ive blocked whole countries, like Ukraine where lot of spam/hack come from.
     
  11. blackice6666

    blackice6666 Regular Member

    Joined:
    Nov 20, 2014
    Messages:
    233
    Likes Received:
    92
    It depends on what type of attack it is, if you are talking about brutefoce try to use wordfence. If you are having a HTTP DDoS attack try to sign up for the free CloudFlare. If you are having a ssh brute force or a mysql bruteforce try to allow only your IP on your firewall.

    Just give us a little bit more information on what type of attack it is.
     
    • Thanks Thanks x 1
  12. umerjutt00

    umerjutt00 Jr. VIP Jr. VIP

    Joined:
    Oct 28, 2011
    Messages:
    3,876
    Likes Received:
    2,124
    Occupation:
    Ninja
  13. CeaseFireBlack

    CeaseFireBlack Regular Member

    Joined:
    Jun 10, 2015
    Messages:
    425
    Likes Received:
    154
    what a coincidence, i had many bots trying to login to my site from ukraine, but then i have changed my login url, i guess you using wordfence premium to block those countries ? i think about getting it too.