Watch Your Logs! Stop the Bad Guys!
If you’re running a WordPress site with the Apache web server and haven’t looked at your server logs, it’s time you did. Unless you’ve installed some fairly heavyweight server and network protections you’re going to see that probably most of the traffic to your web site are hackers looking for vulnerabilities they can exploit. Log entries like this: 220.127.116.11 – – [17/Nov/2020:00:55:37 -0500] “GET //wp-login.php HTTP/1.1” 200 6032 “-” “Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0” 18.104.22.168 – –