Hi Last time I added my links to dirtywarez.com and when I look after that my site gives lots of 503 error and CPU usage and Memory usage is at maximum level. They're sending lots of fake hits/visitors (they arent human ;I looked up from google analytics and nothing seen any of them as a human when 30-40 ip's visiting my pages) from a range of mostly China and Europe IP's.. How can I block them? I use wordfence plugin and manually blocking them but I cant handle it. Please help me.
Why are you adding your links to a site like that in the first place? Seems like you brought this upon yourself. You can try blocking them via .htaccess or similar, or if you are using CSF, you can attempt to block China entirely at the firewall level.
I blocked them via htaccess but theyre still sending visitors and they get 500 internal server error thats not increase my server loads but I dont want any ip ranges from them bothering often my site pages.. if I use wordfence plugins cache option then is my site gets speed up?
You definitely did bring this upon yourself. IMO they're trying brute force attacks and it's only a matter of time before they get in. WP's website has an article addressing this issue, and offers some tips, as well as plugins and other resources to help stop these attacks. With WP being so popular, it is a favorite target and therefor needs to be fully secured. There are several ways to attack a website, and some people are happy enough to overload your server and make your site inaccessible. Check out the link below and see what you can do. http://codex.wordpress.org/Brute_Force_Attacks I also just stumbled onto this support thread, which has a few more ideas. http://wordpress.org/support/topic/blocking-brute-force-attacks
Hello, You could try a few more steps: https://sucuri.net/wordpress-security-monitoring and try: http://www.searchenginejournal.com/...-how-to-harden-your-wordpress-security/63685/ But to be honest like the others said you were looking for trouble advertising there. Also try switching to CloudFlare they have a WordPress plugin aswell i belive. Regards, Adam
find common signs of these fake "visitors", i mean from apache access log example. so you can see ips, refering pages, user agent (browser type)... based on that you can block ip ranges in firewall, or block all visits from certain site (ddl site example). that access log should give an idea. blocking can be done in firewall and also .htaccess. you may also try offloading your site elements to some CDN like maxcdn.com or apply cloudflare.com