Support

Admin Tools

#35219 Upload Shield - Auto Disallow IP, can it be done?

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by dunwin on Thursday, 13 May 2021 09:55 CDT

Thursday, 13 May 2021 06:03 CDT

dunwin

Please look at the bottom of this page (under Support Policy Summary) for our support policy summary, containing important information regarding our working hours and our support policy. Thank you!

Admin Tools is doing a great job of blocking uploads to our web server - Most of these are coming from outside our country (so what's new?).

I was just wondering if it is possible to auto disallow the IP address when Admin tools blocks one these uploads?

So far I have manually disallowed the IP Addresses. 

Any thoughts?

 David Unwin - London UK

Thursday, 13 May 2021 07:47 CDT

tampe125

Hello,

Admin Tools will automatically block an IP if it raises too many security exceptions on a specific time frame. You can review and edit such interval inside the Configure WAF page, tab Auto-Ban.

 

Davide Tampellini

Developer and Support Staff

🇮🇹Italian: native 🇬🇧English: good • 🕐 My time zone is Europe / Rome (UTC +1)
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Thursday, 13 May 2021 08:38 CDT

dunwin

Hi Davide,

Thanks for that.

Does the attached setting look sensible?

Kind regards

 

 David Unwin - London UK

Edited by on 2021-06-12 20:45 CDT

Thursday, 13 May 2021 08:53 CDT

tampe125

Yes, but I'd suggest to block only for 12 or 24 hours maximum. Most of the people (attackers included) are using dynamic IPs, so in about a day they would get a new IP.

Blocking for too long will only reject legitimate users that are unlucky enough to share the IP with an attacker and slow your site down, since you will end up with thousand of blocked IPs, that Admin Tools has to check one by one on each page load.

Davide Tampellini

Developer and Support Staff

🇮🇹Italian: native 🇬🇧English: good • 🕐 My time zone is Europe / Rome (UTC +1)
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Thursday, 13 May 2021 09:55 CDT

dunwin

Davide,

Thank you very much for your response. The default was 999 days and I did not change it. 

So, I appreciate your comment and explanation.

Great support as usual from the Akeeba team.

Thank you

 David Unwin - London UK

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!