I am so sick and tired seeing these spammers on my blog as well as intruders we called “hackers” on the Internet. They have nothing better to do but to harrass those blogs or websites who tries to be at peace. These hackers wants to access your Twitter, Gmail, and Facebook…so they can have access to your money. Or whatever you have on the Internet that’s giving you monetization. Yeah, they want to steal your glory!
I created a short video…
I’ve created a step-by-step video and a written post about this, so I can show you exactly what I meant what I have just written below. You have something to look on both sides.
1. Go to your spam folder.
NOTE: Please click these images if you want to see the big version.
First, I go to my Spam folder. I highlited one of the spammer’s IP address. And then I go to my server. So far I’m with Hostgator. Some of you may be at Bluehost. Bluehost and Hostgator have the same name on some of their cPanel. Like IP Deny Manager under Security section.
2. Then go to your server.
On your cPanel, go to Security. Click on that IP Deny Manager and it should lead you to the site like the one I have below where you can “cut and paste” the IP from spam folder to your server.
On your server, add the spammer’s IP address in the IP Deny Manager. The server will never duplicate the IP address. So if you forgot that you already entered it, it will just paste over it but it won’t be repeated it again. So now that’s is done, let me show you another way of blacklisting these intruders who tries to access your account by guessing your username and password. If your username is “admin” you’re in great DANGER.
IMPORTANT: Do not create a password that can be found in the dictionary. Do not use birthdays, birth place, or social security. Create a password that doesn’t make sense and make sure it’s as long as 16-20 characters. Include symbols, numbers, lower & upper case letters. Do not use the same password over and over again. Make sure you have different password for each social media. I use LastPass to remember all my passwords. It’s FREE. I have LastPass on my iPhone, Tablet, and Laptop.
Another Option: On my iPhone I have an application called Password. It’s a paid one but I’m pretty sure there are other application that’s free. This is where I keep all of my passwords through the Internet. On this app, it is also password protected just in case my iPhone gets stolen, it’s not gonna be easy for them to break in all of my stuff that are password protected.
Btw, I’ve learned how to blacklist intruders from Adrienne Smith’s post: How To Blacklist Spammers And Intruders From Invading Your Blog. From her video she shows you how to use “Limit Login Attempts” plugin which is pretty similar to Wordfence plugin. These plugins are both 5-stars.
Tim Bonner was the one who taught me how to use Wordfence here: Wordfence To The Rescue
So if you have used Limit Login Attempts, you can watch Adrienne’s video but if you are using Wordfence, you can continue watching my video. But either way, I’ve created a step-by-step “how-to” both video and post.
3. If you have Wordfence…
Go to your email and look for Wordfence alert email. On its headline it will say: [Wordfence Alert]. You will get several of these. If there are 18 of them in one day, for instance, Wordfence will email you one-by-one of its spammer’s IP address. On that User IP it will tell you their IP address. Cut & paste their IP address on that IP Deny Manager section. And you will never see these intruders ever again!
Let’s go to your Wordfence…
First go to your Dashboard > Wordfence > Options. Scroll down below and you will see the “Login Security Options” down below. So far you can see I only gave them 5 attempts before they get locked out.
I can change the login attempts there to 1, 2, 3, or 4. I can give it lower than 5 attempts. Reason why I have set it there on 5 is, sometimes I try to get in my blog and put the wrong password. Or I mistyped the password. So I’m giving myself a chance to identify the real password before I get locked out for 30 minutes. You can set the locked out hours from 5 minutes to 60 days. Depends how long you want to keep them out.
Wordfence can do a lot more than locking these hackers out. It can also scan malwares or dangerous websites that you shouldn’t go to. It saved me many times from going to links of malwares!
Wordfence is a GREAT plugin. It’s a plugin I cannot do without. If you want your site to be hacked free, you will need to install Wordfence. There is a FREE and paid version of this. So far I’m using the free version.
If this post helps you or if there is something you don’t understand, please do not hesitate to ask questions. Leave a comment below.