May I suggest a feature to help block hackers from access in the site backends?

Upon failure to access the backend a certain number of times, that IP address is automatically added to a temporary blacklist for a period of time that the Admin can specify. For example - 24 hours or until admin removes from blacklist.

Right now the system will allow attempts until the hacker gets bored and stops trying to access the site.

This feature would be similar to how banks will ban you if your username and password fail a certain number of time and temporarily ban you for 24 hours or until you contact the bank to get a password reset.

So specific features:

Under the blacklist tab under the firewall configuration tab called add:

checkbox- Enable automatic blacklist of IP feature
field - number of attempts before blacklist
drop-down - blacklist for (1 hour, 2 hours, 6 hours, 24 hours, until admin removes)

coryfisk wrote:

that's great, I hope Rsfirewall with these functions.

Hello,

These have been added on our TO DO list. Thank you for your suggestions.

Hello,
Can you up this new fonction in your todo list please ?

This feature should be made available as soon as possible. My sites are attacked daily and I routinely have to delete tens of thousands of email notifications weekly. Please and thank you.

Please add this feature as quickly as possible. I have sites that are attacked daily. I ultimately have to delete tens of thousands of email alerts weekly. Please and thank you.

I agree with everyone here. I love the product but an automatic blacklist would make it even better. I like having the emails alerts on so that I know when someone attempts a brute, but some of the hackers really are persistent, 1500+ attempts or so. Some of these attempt notifications max out my SMTP limits.

I like the way cPanel's cPHulk handles it, an automatic 2 week block after about 30 attempts. I don't get an alert email until the ip is blocked for the 30 attempts, then the email gives a choice whether to block the IP (or range /8 /16 /24) permanently.

this has been requested more than 2 years ago ! And altough you've put it on your to-do list, it's still missing. Needles to say this is dearly needed ! It's a real pain !
Thanks

When will this feature be available. This is an urgently required feature