My email server is constantly bombarded hackers.
That is what is so surprising to me. Other than one site that has domain names for sale and no real shopping cart, no other site on my server has anything that I thought would attract a hacker. There are so many other, better targets than what my server would have to offer. Maybe I'm just getting the small time hackers trying to learn how. Either way, it's very annoying!Do you have sites with a shopping cart or anything else you feel is drawing the attention of hackers?
I just had to check online to understand what 'brute force' is all about. Apparently, this is a hacking method that uses an automated system to try and guess the password(s) to the many web services. Is there a chance that most of these hackers are creating bots to target the numerous websites?Most, if not all businesses, rely on emails for their day-to-day operations. There a huge chance that sensitive information is also exchanged in this way. I hear stories of email servers being hacked and wonder how can any business avoid this? Is encryption always enough?
That's correct. Most that are attacking my server are using bots. In the log files I see the attempts and before using cPHULK there would be as many as two attempts per second to guess passwords and the attempts would last for an hour or more. And as you can imagine it also slows down the server when these attacks were happening. Now, invalid login attempts are limited to 5 then the users ip address is block for 360 minutes Some hackers even use multiple ip addresses so I also get an email for each of these blocks and if I see multiple attempts from the same subnet then I can blacklist the entire subnet.Is there a chance that most of these hackers are creating bots to target the numerous websites?
This is exactly what I was going to comment on because no business, with a huge online presence, would ever want to experience slowed down server speeds. I can imagine how these bots have an easy time, especially with the easy passwords. Can this software still be used to monitor hackers trying to access a PC?And as you can imagine it also slows down the server when these attacks were happening.
I wonder if they're attempting to use your server power to mine for bitcoins? The payoff is certainly there. Some of Amazon's servers were hacked for that reason. Allegedly, computer forensics showed that the hackers never attempted to even look at the buyers' and sellers' payment information.That is what is so surprising to me. Other than one site that has domain names for sale and no real shopping cart, no other site on my server has anything that I thought would attract a hacker. There are so many other, better targets than what my server would have to offer. Maybe I'm just getting the small time hackers trying to learn how. Either way, it's very annoying!