Wordpress DoS vulnerability

I've just been reading about a vulnerability in Wordpress that can bring down a site -
https://thehackernews.com/2018/02/wordpress-dos-exploit.html - and since I have a number of Wordpress sites I was wondering if there's anything I can do about it. I don't like the idea of altering Wordpress core but there is an Apache ModSecurity fix which looks promising - https://www.rastating.com/protecting-wordpress-against-cve-2018-6389/ - though also looks like quite a bit of work.

  • Adam Czajczyk

    Hello Turnpiece,

    I hope you're well today and thank you for your question!

    Certainly altering WP core is not a good idea. That issue is actually described in much more dangerous way than it really is. It's very unlikely for a "single machine" to take your site down with any decent hosting, the test was run in a specific way. It is possible but the chances are rather low. I've just read over last few days on a couple of sec-blogs reports by the guys who tried to replicate that on their own site but with not much luck. But if you wan't to be extra sure and you do have full root access to your server, you can try apply that mod_security patch (or rather "mod_security config rule").

    That being said, the fact that "single machine" most likely won't be able to take the site down, doesn't mean that somebody won't apply the attack on a larger scale, especially now - when this has been so widely published :slight_smile:

    But that's another story and large scale DDoS can always be difficult to handle.

    The bottom line is:

    - keep the site up to date,
    - apply that mod_security patch if you got such option
    - if possible (if you're not using it yet) add up some CDN to the site (like e.g. CloudFlare)

    All together it should lower the risk significantly :slight_smile:

    Kind regards,
    Adam

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.