If you have a WordPress or Joomla site lock down your server
Contributed by: Email on 04/13/2013 09:13 AM [ Comments ]
The goal of the attack is to gain access to already compromised accounts, and if that fails, go on fully exhaust a sites resources, and make the site come up unavailable.
Cloudfare indicated in a blog that another one of the concerns of an attack like this is that the attacker is using a relatively weak botnet of home PCs in order to build a much larger botnet of beefy servers in preparation for a future attack. These larger machines can cause much more damage in DDoS attacks because the servers have large network connections and are capable of generating significant amounts of traffic.
Matt Mullenweg the creator of WordPress stated that if you still use admin as a username on your blog, change it, use a strong password, if youre on WP.com turn on two-factor authentication, and of course make sure youre up-to-date on the latest version of WordPress. Do this and youll be ahead of 99% of sites out there and probably never have a problem. Most other advice isnt great supposedly this botnet has over 90,000 IP addresses, so an IP limiting or login throttling plugin isnt going to be great (they could try from a different IP a second for 24 hours).
There are also a number of things that you can do to protect yourself, one easy one comes to mind, do not use obvious passwords. Also you can get a security plugin, and even for non-code savvy users it is an effective way to secure your site.
Comments