Midlertidig stramning af sikkerheden for WordPress

Vi ser i øjeblikket, at hackere forsøger at tvinge sig adgang til WordPress-administrationen ved at afprøve forskellige kodeord. Teknikken hedder bruteforcing og er ikke i sig selv ny.

Bruteforcing kan sammenlignes med, at nogen forsøger at bryde en kombinationslås ved at prøve én kombination ad gangen, indtil låsen til sidst går op. Metoden er ikke særlig effektiv og derfor har man kun sjældent set den brugt i nyere tid. Noget tyder nu på at hackerne har fået adgang til så meget computerkraft, at metoden med fordel kan anvendes til at bryde ind i WordPress-installationer, og dét er nyt.

Effekten af de mange login-forsøg, der bliver skabt af angrebet kan mærkes på serverne. En hjemmeside under angreb skaber en høj belastning, hvilket går ud over den pågældende hjemmeside, men også andre kunder på serveren.

For at sikre en stabil drift, arbejder vores sikkerhedsteam med en løsningsmodel, hvor et højt antal fejlslagne loginforsøg resulterer i en midlertidig blokering af den IP-adresse, som forsøger at logge ind i WordPress. Når IP-adressen bliver blokeret vil det samtidigt stoppe den forhøjede belastning.

Vores sikkerhedsteam bliver samtidig informeret om det konkrete angrebsforsøg. Informationen bruger vi til at spotte tendenser og på den måde forudsige, samt forbygge fremtidige angrebsforsøg.

Vi er klar over at metoden kan betyde, at enkelte kunder fejlagtigt bliver låst ud af deres WordPress-administration. Sker det, er du selvfølgelig velkommen til at kontakte kundeservice her:
https://surftown.dk/support/create

9 Comments

  1. Stefan J.
    13/04/13 @ 12:37

    Jeg vil på det kraftigste opfordre folk til at installere plugin’et wordfence til sin wordpressløsning, løsningen giver brugeren mulighed for at sætte et max. antal login-forsøg på siden samt automatisk blokering af IP-adresser der fortsat bryder disse regler… Der findes både en gratis, samt betalingsversion af dette.

  2. Nicolas Nezzo
    13/04/13 @ 13:29

    Hej Stefan

    ‘Wordfence’ er et rigtig godt plugin til at forbedre sikkerheden i WordPress. Ligeledes kan vi anbefale ‘Better WP’ Security, som også klarer den opgave rigtig godt. 🙂

  3. Knuth Becker
    15/04/13 @ 22:55

    Super med lidt stramning af sikkerheden – ikke fordi jeg har haft behov for det so far 🙂 Jeg har også skrevet en artikel om at sikre sin wordpress side på: https://blivenblogger.dk/sikkerhed-i-wordpress-blog/

  4. Goldfingyr
    23/04/13 @ 22:57

    Jeg har et wordpress multisite (network). En af de små ting jeg også gør for at gøre livet lidt sværere for hackere er at jeg sender *.wp.domain.com til min wps server mens wp.domain.com sendes til en af mine andre servere.
    Da admin accounten hører hjemme på wp.domain.com kan den ikke tilgås udefra. Når jeg skal tilgå den bruger jeg en webbrowser via X fra en ssh til VPS.
    I VPS /etc/hosts fortæller jeg så bare at 127.0.0.1 også hedder wp.domain.com ud over localhost.
    Det er ikke så besværligt som det lyder.

  5. Peter Molzen
    25/04/13 @ 10:29

    Jeg vil helt klart anbefale den gratis og udmærkede, overbevisende
    Better WP Security som kan søges/hentes i WordPress Plugin siden..

  6. Nicolas Nezzo
    14/06/13 @ 10:35

    Hvor er det super med jeres input! 🙂 ^NN

  7. Amalie
    23/02/14 @ 14:53

    I skriver at det er en midlertidig stramning? Men min Joomla er stadig låst?

  8. Asbjørn Riis
    02/04/14 @ 10:35

    Findes der også et lignende plugin til Joomla?

  9. richard6272
    19/04/14 @ 03:04

    How To Get The Most Out Of Your Florida Preconstruction.Run disc cleanup and defragment it, from start/accessories/system tools.Prom dresses with trainers, glitter scarves with t-shirts.How To Choose The Best Student LaptopIt is very easy to find a sport drink that does not include any of these harmful elements and it will help the athlete feel generally healthier and fit.Through the Internet, it is a quick and simple process to determine the current price of gold.Su Yu easily came before this rock giant.Let’s look at what we have found in the common vaccinations:And this technology can be said to be the key to success.He does things for an end outcome.

    click hereThe air jordan shoes gives each benefits and drawbacks which post may https://www.nikeairschuh.com/nike-lunarglide-4-c-44/ dissect the selections these footwear supply you within the person categories.Boat shoes could choose two hole or three holes styles, each pair of sailing shoes are in brand factory production, will take about a month.You can find a pair of Nike Dunks for yourself at any Nike store near you.By nature the smaller channel catfish, less than 14″ eat from the bottom.During the procedure, increased pressure or viscosity and a cloudy sample indicate high probability for meningitis.For added admonition about Nike Shox R4 shoes, amuse acquaintance us.How to Keep Your Article Content Fresh and Interesting

    – Stephen Sprouse graffiti signature printed in pinkWhich is simple to prevent adding pages a person design a just one web page incorporated with this like a net for the other individuals, and consist all the urls to it an individual want to have on nike lunarglide 4 sale every single website page.Drain on kitchen paper or a clean tea towel.That means you have improved cash by $739,726!If he acts rude at times it is because he is serious about teaching his methods correctly and if you are not sincere about learning the methods then you are wasting his time.Boutique us in Bandung, a lot of shoppers position with Malaysia.Nothing prevent this from happening with enough thrust.Most of the inspirational counselors of our time have been women, though men do occasionally hold such positions.

    Nowadays, high heels are available in all sorts of shoes ranging from cowboy to party shoes and office wear to casual shoes.Over time, Air Force One shoes made its niche both in the hip-hop and inner youth culture and became not only a sportswear but also a fashion wear.awhich mainly built them into raise within reputation.”Harvard is the ideal the pinnacle,” Wearwolf Executive Vice President Jeffrey Wolf told Bloomberg.your 12v reading looks a little high although its still within the 10% limit.People who has all-natural curls would then questioned to straighten their hair.For example, perhaps the child is looking at taking a foreign language in junior high as an elective.

    Antibiotics are defined as any chemotherapeutic substance designed to kill or hinder the growth of microscopic organisms.Also, if you have a fellow ally that is not Protoss, you can mind control his worker, just 1 and you can make a whole colony with it.Importance Of GRE Importance Of MBA and MBA Information Information of Domain and Guidance for purchase Domain Information of the Different laptop modals Insurance Types and Guideline of insurance Internet marketing And Link Building Tips Introduction of Homely treatment Cheap Nike Air Max 95 Latest Films story and preview Information Latest Technology information News For bollywood and Hollywood films Online marketing Guideline and strategy Overview of PHP SEO Guideline and information.