However, because of the way AmeriCommerce does billing, we have to block those who would never be our customers to help us manage bandwidth. Navigate to the Document Root directory for your website, locate the it. You will then see your files listed, ensure you are set to. For example, CVE-2021-25096 was found accidentally when writing a PoC for CVE-2021-25095. Blocking a Country from Accessing your Site via the. The goal is to manage bandwidth and not block countries or bad players. Not all of the vulnerabilities were found directly by the fuzzer. Our rotating REST proxy API provides tested, working proxies from 100+ countries. When we find a foreign country IP address, we figure out the CIDR and block that. We should use those to forward calls to target objects.
We would not normally do this, but because we check each IP address to see if they are a foreign country, then we are already in there. So, yes, we do block individual USA IP addresses if we see that they are a bad player. There are no legitimate customers trying to visit your site by using URLs that don't exist on your site that did not go to product pages that you have removed. If they are trying to go to your site URL with anything like "wp-logon" in it then chances are that they are trying to figure out if your site is a WordPress site that then they can try to hack. You can recognize this by looking at the referrer URLs for the activity in the visitor session logs. Yes, we also get bad players from USA IP addresses on our AmeriCommerce sites. Do this also helps reduce the surface area of threats from bad players. So, limiting the traffic to our AmeriCommerce site to folks who can actually do business with us is important. Most of our products are made in the USA and we only ship orders to USA addresses.
That other platform does not charge for bandwidth usage so we never even thought of blocking IP address on that platform. We have only 1 of these sites on AmeriCommerce and all the other sites on another platform. We have about a dozen ecommerce sites on 2 platforms. However, because of the way AmeriCommerce does billing. The goal is to manage bandwidth and not block countries or bad players. When we find a foreign country IP address, we figure out the CIDR and block that. Luckily, in this instance I was able to get AmeriCommerce to forgive the extra charges, but we can't expect them to always do this for us. We would not normally do this, but because we check each IP address to see if they are a foreign country, then we are already in there.
This was due to a single IP address, from China, that was hitting our site and using many GB of bandwidth that month. AmeriCommerce charges for bandwidth usage and if you go over your allotment, the additional charge can sting.Ī few months ago we were presented with a monthly charge that was more than 5 times our normal monthly charge.