Hey there people, need some help... ☹️

I'm having technical problems with the websites that accompany my Fedi accounts.

My hosting company is saying that there's some kind of attack going on, but I'm not sure if their suggestions are helpful.

If you're experienced with WordPress and hosting issues, could you message me?

12
Share
Share on Mastodon
Share on Twitter
Share on Facebook
Share on Linkedin
alex <3

@feditips a DDoS attack on them or something I assume they mean?

0
1y
🦋 Benjamin West - 🐒🌻

@feditips

good luck, hope someone awesome is helping

#fediverse #peerSupport #mastdon #feditips

0
1y
bad girl, no cookie!

@feditips

Hey. Attacks (usually DDOS attacks) are the responsibility of the webhost to mitigate; they're the only ones with the tools to do so (unless you're renting an entire server, which I assume you don't). If your host can't or won't handle this problem, it may be time to switch hosts. I haven't had a DDOS attack yet, but my website became very popular on Reddit for a hot second, which amounted to the same thing, and my provider handled the load themselves.

0
1y
Matthew Saunders Brown

@feditips Still need help? I'm a WordPress hosting expert and would be glad to assist if I can.

0
1y
minecraftchest1

@feditips
Best I can say is put it behind Cloudflare. Who is your hosting provider?

0
1y
OldTimey Gamer (he/him)

@feditips immediate recommendation is to install the wordfence plugin then as others have mentioned check with your host but specifically ask what version of php are they using and if not the latest see if they can change it for you. Sometimes you can yourself actually. Also for sure check for any and all WordPress updates (plugins and themes too) backing things up first.
It's possible there's just a coding issue too, something incompatible.

0
1y
Nordnick :verified:

@feditips

Not using #Wordpress, but hosting own projects.

What are the suggestions of your hosting provider?

Any details about your hosting and the attack?

0
1y
Gytis Repečka

@feditips WordPress does not sit well if hosting provider drastically oversells computing reaources. I used to see huge spikes in CPU usage related to MySQL, but moving to different host revealed regular traffic was just fine. As for DDoS, better choose provider with already integrated protection.

0
1y
Ric

@feditips we're a web host and very experienced with resolving Wordpress attacks. It's frankly a horrifically insecure platform if left as a stock, out of the box install!

Get in touch via our website if you're still having issues. Happy to jump on and investigate for you. qweb.co.uk

At the very least, a well configured Wordfence is a good start. My plugin, github.com/qwebltd/wordpress-a will block admin panel and XMLRPC access to countries that don't need it, too. Fail2Ban as a bonus.

0
1y
Ray Gulick 💗🌛 ⭐️ 🍀

@feditips
I removed my website URLs from Mastodon a month or so ago when I noticed they were drawing an increased number of attacks, most of which could be traced back to Mastodon clients.

0
1y
Replies