Support

Hi Nicholas,


I was wondering if there was a global blacklist of ips like Spamhaus has for email?

I say this because I'm getting a lot of spam from admintools alerting me to mostly the reason: "Admin query string". I follow the IPs to tor servers, so I'm assuming automated penetration testing/attacks. Nothing of any bother when the site is up to date. But still bad traffic I'd rather be blocking.

Thanks

Ty

Hello,

you can find some IP blacklist around the web, but as you know we are against blindly blocking IP addresses.
In the real world, an attacker will change his IP very often (several times at days), so you'll end up blocking the wrong address. Moreover, since IP will be reused, you could block legitimate users.
At the end of the day, the most effective thing to do is to let Admin Tools do his work: it will block the Ip for a limited amount of time.

By the way, if you want to lower the amount of attacks on your backend, add the extra password layer on your backend. Most of attackers will simply turn away when they see such protection.