1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Are your site been attack by bot?

Discussion in 'Blogging' started by Devilfish1688, Mar 1, 2016.

  1. Devilfish1688

    Devilfish1688 Senior Member

    Joined:
    Sep 30, 2013
    Messages:
    830
    Likes Received:
    41
    recently my site attack by bots....i also don't know why ...

    I also not expert on this , speak to my host provider they just show me some informations , datas but I not technically expert on database etc...as they told me find deveopler for help but they also provide some helps for me self figure out.

    how you all prevent bots from attack your site?

    I read up , in fact is " dangerous to remove all bots " as one bot is google which index your site. hmmm...
     
  2. roadhamster

    roadhamster Regular Member

    Joined:
    Mar 12, 2012
    Messages:
    335
    Likes Received:
    242
    Do you have access to your logfiles? I guess so, so filter out the unwanted bots by IP or useragents. You can create a .htacces file or write a php script which will block these bots from accessing your site. Google it, all the info is already there. http://lmgtfy.com/?q=block+bots+with+htaccess
     
  3. bigbrothers

    bigbrothers Regular Member

    Joined:
    Jul 15, 2014
    Messages:
    382
    Likes Received:
    80
    Gender:
    Male
    Occupation:
    Seo Company
    If the attack is coming from the same IP number each time (or a small set of IP numbers) you should block that IP number in your firewall.

    Aside from the IP blocking, I would scrutinize the files that are being requested. It's a fairly common thing for open-source systems such as WordPress and Joomla to be exploited, which is one reason why they're frequently updated. If you've neglected a few updates, it's possible that someone has penetrated your site.

    Try keep updating the required things to prevent from bot. - BB
     
  4. Devilfish1688

    Devilfish1688 Senior Member

    Joined:
    Sep 30, 2013
    Messages:
    830
    Likes Received:
    41
    well my site so far never get hack...
    next I always update my WP and plugins inside.
    hmm ..
     
  5. collegeguys4

    collegeguys4 Junior Member

    Joined:
    Feb 25, 2016
    Messages:
    124
    Likes Received:
    15
    Occupation:
    computer engineer
    Location:
    New York
    Home Page:
    if you have commandline access you can use iptables to filter ip addresses. I also have a setup that auto blocks bot ip addresses based on their access activity. this system is a Perl based system
     
  6. MuayThai

    MuayThai Jr. VIP Jr. VIP

    Joined:
    Aug 25, 2015
    Messages:
    562
    Likes Received:
    173
    Prevent your site from hacking, not from bots visits.
     
  7. clevelandslim

    clevelandslim Jr. VIP Jr. VIP

    Joined:
    Nov 15, 2008
    Messages:
    1,856
    Likes Received:
    188
    May be the attack is coming from same ip
     
  8. S2Term

    S2Term Junior Member

    Joined:
    May 6, 2014
    Messages:
    138
    Likes Received:
    56
  9. Zwielicht

    Zwielicht Moderator Staff Member Moderator Jr. VIP

    Joined:
    Aug 31, 2013
    Messages:
    6,566
    Likes Received:
    11,706
    Gender:
    Male
    Occupation:
    Private Investigator
    Location:
    Riverside, California
    Home Page:
    What kind of bots are they?

    Some bots, such as Google web bots, are ones you want to allow as you've already figured out.

    On the other hand, some referrer spam (not the ghost variant) and other malicious bots that hit your website are ones you clearly want to block.

    You can try creating a whitelisting certain IP addresses, blacklisting others, or use S2Term's suggestion above.
     
  10. onlineonly

    onlineonly Power Member

    Joined:
    Jul 27, 2014
    Messages:
    610
    Likes Received:
    286
    Location:
    online
    On some of my sites ive blocked whole countries, like Ukraine where lot of spam/hack come from.
     
  11. blackice6666

    blackice6666 Regular Member

    Joined:
    Nov 20, 2014
    Messages:
    233
    Likes Received:
    92
    It depends on what type of attack it is, if you are talking about brutefoce try to use wordfence. If you are having a HTTP DDoS attack try to sign up for the free CloudFlare. If you are having a ssh brute force or a mysql bruteforce try to allow only your IP on your firewall.

    Just give us a little bit more information on what type of attack it is.
     
    • Thanks Thanks x 1
  12. umerjutt00

    umerjutt00 Jr. VIP Jr. VIP

    Joined:
    Oct 28, 2011
    Messages:
    3,822
    Likes Received:
    2,061
    Occupation:
    Ninja
  13. CeaseFireBlack

    CeaseFireBlack Regular Member

    Joined:
    Jun 10, 2015
    Messages:
    421
    Likes Received:
    151
    what a coincidence, i had many bots trying to login to my site from ukraine, but then i have changed my login url, i guess you using wordfence premium to block those countries ? i think about getting it too.