Recent content by ES Dev Team

for me port 587 is also broken in 2.3.x. and my provider is blocking port 465 :(

Interesting. I think a lot of scrapers are using real browsers via something like chromedriver. The chinese bot farms tend to use mobile phones because they're cheap. I wonder how effective it is.

About 90% of today's bots pretend to be regular users and use real web browsers. Neither google analytics nor xenforo can differentiate them between Every website of any sufficient size has this problem Check this thread for more info on solutions...

Yep, cloudflare, fail2ban, or something equivalent is now a prerequisite for running a website now. Not a single one of the 32 servers i manage does not have this problem, in addition to lots of people proving for vulnerabilities and trying to break passwords. So is it the case that everyone...

I'm just happy to see development continuing!

If you click on that URL you can tell that the SQL injection is not working since you don't get a 15 second wait. This person is testing your system for vulnerabilities, and in this case it looks the test is being failed. Strange, this returns a 400 code which may not be tracked by existing...

@truonglv I wanted to buy this plugin but i see it is marked unmaintained.. Is there any chance you will maintain it in the future?

I like to refer to this as a free vulnerability scan, provided by independent and state sponsored hackers. They always go after wordpress first because that's like 60% of the internet. I have seen scans such as these try to pick up database/file backups in the root folder, which i see most...

That's what i'm experiencing too. But it's slower to tail off. It might be because my 'members online timeout' is set higher than theirs. Wonder if other cloudflare users also experience this periodic blast.

Wish i didn't run an international forum at this point 🥲 Looks like Xenforo.com is getting hit. This reminds me of my last night.

Looks like it's mostly died down. Found a recent article about one of these residential proxy botnets and how google took one of them down: https://cloud.google.com/blog/topics/threat-intelligence/disrupting-largest-residential-proxy-network

We have enormous guest amounts now ( 7.7k ) but only 50-100 tcp/ip ports being used. Last night i saw up to 17k and the tcp/ip ports being used was 1800+ ( apache starts choking at 1000/sec with ) So yeah last night's rush was a different kind of traffic..

I got hit with a mega-wave last night.. they kept consuming all my tcp/ip ports ( my current limit is 2048, double the linux default ).. i kept the site online for others only by restarting apache repeatedly. The blast lasted 15 minutes and it totally cut through my protection. I'm not sure if...

If your cpu/mem is not maxing out then you need faster hardware. If your bandwidth is not saturated then you have an TCP/IP socket limit. Linux is by default set to have a maximum of ~1000 connections, so defaults are going to be too low and the site will choke from that alone. If that's not the...

You can use fail2ban for protection and not need cloudflare. It works, i've ran it for years and it's about equivalent, just needs more curation. You can use a reverse proxy over SSH to bounce one website off another. You could also use this to route a VPN you control over SSH. In fact you can...