Hi AITpro
It is greate that “UAEG also protects some one access to the Post/Page with server based such as Feed Attackers”.
I would like to confirm only this protections.
Reason is follows:
It is protected by root .htaccess IP blocking until Oct 30/2014.
On this case Apache logging is 403 Forbidden for above IPs.
Root .htaccess IP blocking is cleared soon by attackers every times.
After Activate BPS PRO, Apache loggings are HTTP 500 during two days.
It seems to be HTTP 500 on UAEG protections.
Is this right ?
On this Morning, No Apache Loggins are shown as HTTP 500. Fine, Maybe stopped attacks.
It was continued almost three months.
During these perod, I have got Folloing attacks/UK Attacker.
1. Comment SPAM.
2. Server Based Mailform Access Evely Days/http 301 – Maybe Attackers Main Purpose
3. Malware with WP Super Cache, wp-config.php was modified.
・Maybe overrides .httaccess by cache.
4. RSS Feed Attack by Own Server IP/Maybe own DoS.
5. Apache Logs many of xmlrpc.php attacks.
6. Apache Logs Attacks on phpMyAdmin/it seems to be Brute Force Attack
・No Damege on Database because of BPS PRO was Activated soon.
By the way, I have 200 rows of Attackers IP, IP adrress is up to 235,000 counts dynamic address.
Most of IPs are China and ukraine, by Japanese Laguage Spam and Feed Attack with server based.
How do you think, these IP Adress to be written on Secure.htaccess by Costom Code to protect HTTP attackings ?
What % of protections will be estimated. About Value 1% ?