wp-loginにどれくらいの攻撃があるか

wordpressを運用していると、すぐにあることに気づく。管理用のログインページがさらされていることである。
wordpressを運用していれば、管理用のログインページのアドレスは誰もが知ることとなる。にもかかわらず、当のシステムのほうでは、IDパスワード意外の対策はなされていない。

その対策については以前、記事としてあげた。

では、実際にどのくらいの攻撃があるのか、apacheのerrorログを見てみる。
当サイトは、月に数人程度の閲覧でしかないのに、apacheのerrorログをちょっと見ただけで、この有様である。

[Sun Mar 14 07:40:41.992809 2021] [access_compat:error] [pid 157607] [client 129.146.111.20:15930] AH01797: client denied by server configuration: /var/www/html/wp-login.php
nekopapa@nekoserv:~/documents/aws_crawler_list$ cat /var/log/apache2/error.log.1|grep denied
[Sat Mar 13 01:23:31.253609 2021] [access_compat:error] [pid 142401] [client 34.236.55.223:62460] AH01797: client denied by server configuration: /var/www/html/wp-login.php
[Sat Mar 13 01:23:32.497182 2021] [access_compat:error] [pid 142398] [client 34.236.55.223:41865] AH01797: client denied by server configuration: /var/www/html/wordpress/wp-login.php
[Sat Mar 13 03:50:31.890386 2021] [access_compat:error] [pid 142401] [client 100.0.176.235:46128] AH01797: client denied by server configuration: /var/www/html/wp-login.php
[Sat Mar 13 07:57:53.388351 2021] [access_compat:error] [pid 142397] [client 116.63.234.191:39214] AH01797: client denied by server configuration: /var/www/html/wp-login.php
[Sat Mar 13 08:10:37.864655 2021] [access_compat:error] [pid 142398] [client 157.245.12.161:50954] AH01797: client denied by server configuration: /var/www/html/wp-login.php
[Sat Mar 13 08:56:39.700800 2021] [access_compat:error] [pid 142400] [client 58.63.50.226:9691] AH01797: client denied by server configuration: /var/www/html/wp-login.php
[Sat Mar 13 10:29:43.023596 2021] [access_compat:error] [pid 143519] [client 40.77.188.103:21531] AH01797: client denied by server configuration: /home/nekopapa/public_html/cgi-bin/abcounter/index.html, referer: https://nekoserv.atnifty.com/?paged=4
[Sat Mar 13 10:29:43.035099 2021] [access_compat:error] [pid 142399] [client 40.77.188.103:21613] AH01797: client denied by server configuration: /home/nekopapa/public_html/cgi-bin/diary/getyw.cgi, referer: https://nekoserv.atnifty.com/?paged=4
[Sat Mar 13 13:33:06.477785 2021] [access_compat:error] [pid 143519] [client 13.124.222.242:30965] AH01797: client denied by server configuration: /var/www/html/wp-login.php
[Sat Mar 13 13:33:46.641137 2021] [access_compat:error] [pid 149885] [client 13.124.222.242:54100] AH01797: client denied by server configuration: /var/www/html/wordpress/wp-login.php
[Sat Mar 13 16:59:32.167647 2021] [access_compat:error] [pid 149359] [client 198.199.83.237:38980] AH01797: client denied by server configuration: /var/www/html/wp-login.php
[Sat Mar 13 18:15:27.968824 2021] [access_compat:error] [pid 142397] [client 142.93.189.19:55366] AH01797: client denied by server configuration: /var/www/html/wp-login.php
[Sat Mar 13 21:17:36.581206 2021] [access_compat:error] [pid 142398] [client 95.213.144.152:47222] AH01797: client denied by server configuration: /var/www/html/wp-login.php

記事本体よりもwp-loginへのアクセス試行のほうが多い。

コメントを残す

メールアドレスが公開されることはありません。