In the past few days, I've gotten over 300 login attempts on random user accounts on my website forums. The hits come roughly once every 5 minutes from an array of random IP addresses. It's been going on non-stop for days.
I'm currently setting up ban triggers for the most prolific IP addresses, but I'm afraid that I'm going to go too far and ban legitimate users who forgot their password.
Anyone else been through this before? Any advice?
GroovyMAME support forum on BYOAC
|