Continous login/non existing page requests (Hacking attempts?)

Hi Guys,

Added some logging for login attempts and am getting continous attempts to login using what seem to be randomly generated email addresses etc. Additionally loads to requests for pages that dont exist but would point towards someone trying to gain access. Any ideas how to stop these? Am happy enough Yii seems to be fairly secure (although am aware my coding can alter that!) but am sure its eating into my bandwidth etc etc.


2012/07/30 03:20:03 [error] [application] [Guest][] Action Error: Unable to resolve the request "add".

2012/07/30 03:20:03 [info] [application] [Guest][] User: Guest (ID: )

2012/07/30 03:20:03 [error] [exception.CHttpException.404] [Guest][] exception 'CHttpException' with message 'Unable to resolve the request "user&destination=node/add".' in /home/ninety7/yii-1.1.10.r3566/framework/web/CWebApplication.php:280

and


REQUEST_URI=/user/register+%5BPLM=0%5D%5BR%5D+GET+http://newtownforestfc.co.uk/user/register+%5B0,23025,30885%5D+-%3E+%5BR%5D+POST+http://newtownforestfc.co.uk/user/register+%5B0,0,0%5D+-%3E+%5BL%5D+GET+http://newtownforestfc.co.uk/site/login+%5B0,8756,11918%5D+-%3E+%5BL%5D+POST+http://newtownforestfc.co.uk/site/login+%5B4981,0,12142%5D

HTTP_REFERER=http://newtownforestfc.co.uk/user/register+%5BPLM=0%5D%5BR%5D+GET+http://newtownforestfc.co.uk/user/register+%5B0,23025,30885%5D+-%3E+%5BR%5D+POST+http://newtownforestfc.co.uk/user/register+%5B0,0,0%5D+-%3E+%5BL%5D+GET+http://newtownforestfc.co.uk/site/login+%5B0,8756,11918%5D+-%3E+%5BL%5D+POST+http://newtownforestfc.co.uk/site/login+%5B4981,0,12142%5D

---

2012/07/30 05:23:06 [error] [application] [Guest][] Action Error: The system is unable to find the requested action "register [PLM=0][R] GET http:".

2012/07/30 08:12:52 [info] [application] [Guest][] User: Guest (ID: )

2012/07/30 08:12:52 [warning] [application] [Guest][] Failed Login Attempt: Pugunmareehah, IP Address: 188.165.194.123 email plutunelo@gmail.com

2012/07/30 09:37:12 [info] [application] [Guest][] User: Guest (ID: )

2012/07/30 09:37:13 [warning] [application] [Guest][] Failed Login Attempt: Duptassesty, IP Address: 24.84.17.245 email fsd4543fds3d3@gmail.com

2012/07/30 11:06:56 [info] [application] [Guest][] User: Guest (ID: )

2012/07/30 11:06:56 [warning] [application] [Guest][] Failed Login Attempt: Wadoallermrot, IP Address: 193.105.210.161 email grappyweaseks@gmail.com

2012/07/30 13:07:05 [info] [application] [Guest][] User: Guest (ID: )

Does seem to be having a negative affect on my site (it is only a small site)


2012/07/23 06:01:23 [error] [application] [Guest][] Action Error: CDbConnection failed to open the DB connection.

2012/07/23 06:01:23 [error] [exception.CDbException] [Guest][] SQLSTATE[08004] [1040] Too many connections

Anyone any ideas how to try and prevent these or block them? Suppose difficult is telling whats good and whats not!

Thanks

Ross

You can try out csrf token and captcha to prevent this.