Recommend a site activity monitor plugin?

[Collins]

I'm getting reports of some missing images and some posts reverting to draft state. I know this is not really related to Genesis, but was wondering if anyone uses any type of plugin that sends an alert whenever any type of activity occurs on the site.

[andrea_r]

There's a bunch of them available to track user activity.

Have you talked to your web host?

[Collins]

We host on our own dedicated server and have installed ThreeWP Activity Monitor (http://wordpress.org/extend/plugins/...ivity-monitor/), plus added directory-level authentication, but we're still seeing hundreds of brute-force hack attempts everyday. I'd like to accomplish the following:

1. Protect wp-admin from hack attempts.
2. Set up some sort of alert system for certain activities in admin.

[Collins]

More info on this... We're using 3.2.1 and are in the process of upgrading to 3.4.2. I wonder if there are any security measures inherent with the update that'll help resolve these hack attempts.

[andrea_r]

Having run my own server.... that's in the range of normal, actually. :-/

There's a Login Lockdown plugin as well.

[Collins]

Quote:

Originally Posted by andrea_r

Having run my own server.... that's in the range of normal, actually. :-/.

I'm not sure what you mean. Can you clarify what you mean by the statement above?

[andrea_r]

Quote:

but we're still seeing hundreds of brute-force hack attempts everyday.

That part? I was saying this part is normal when you are running your own server.

It may or may not have anything to do with what you;re seeing in the backend.

[Collins]

There should be a way to reduce this down to zero.

[andrea_r]

Not with the thousands of bots sniffing servers looking for WP installs.

Even if you could block the bots, you can;t block a real person visiting your site and just attempting that manually.

Either way - you still have no idea if it is even related to things changing in the admin area. That;s a separate issue entirely.

[Collins]

Something I've done with osCommerce is to change the directory name for admin, and add directory-level security. For the directory change in WP, maybe changing wp-admin to site-admin would help?? Definitely getting rid of the admin user account helps, because that's the username our hacker is currently using.

[andrea_r]

I always keep the admin username with a super strong password.

I have seen hacks where if the username was not in use, they created a user named "admin".

your bigger risk for entry is unsecure plugins and scripts on the server.

[Collins]

How can they create a user named "admin"?

[andrea_r]

There are some hacks where a hacker can programatically create a user.

They just pick the "admin" username.