Continous login/non existing page requests (Hacking attempts?)

Hi Guys,

Added some logging for login attempts and am getting continous attempts to login using what seem to be randomly generated email addresses etc. Additionally loads to requests for pages that dont exist but would point towards someone trying to gain access. Any ideas how to stop these? Am happy enough Yii seems to be fairly secure (although am aware my coding can alter that!) but am sure its eating into my bandwidth etc etc.

2012/07/30 03:20:03 [error] [application] [Guest][] Action Error: Unable to resolve the request "add".

2012/07/30 03:20:03 [info] [application] [Guest][] User: Guest (ID: )

2012/07/30 03:20:03 [error] [exception.CHttpException.404] [Guest][] exception 'CHttpException' with message 'Unable to resolve the request "user&destination=node/add".' in /home/ninety7/yii-1.1.10.r3566/framework/web/CWebApplication.php:280





2012/07/30 05:23:06 [error] [application] [Guest][] Action Error: The system is unable to find the requested action "register [PLM=0][R] GET http:".

2012/07/30 08:12:52 [info] [application] [Guest][] User: Guest (ID: )

2012/07/30 08:12:52 [warning] [application] [Guest][] Failed Login Attempt: Pugunmareehah, IP Address: email

2012/07/30 09:37:12 [info] [application] [Guest][] User: Guest (ID: )

2012/07/30 09:37:13 [warning] [application] [Guest][] Failed Login Attempt: Duptassesty, IP Address: email

2012/07/30 11:06:56 [info] [application] [Guest][] User: Guest (ID: )

2012/07/30 11:06:56 [warning] [application] [Guest][] Failed Login Attempt: Wadoallermrot, IP Address: email

2012/07/30 13:07:05 [info] [application] [Guest][] User: Guest (ID: )

Does seem to be having a negative affect on my site (it is only a small site)

2012/07/23 06:01:23 [error] [application] [Guest][] Action Error: CDbConnection failed to open the DB connection.

2012/07/23 06:01:23 [error] [exception.CDbException] [Guest][] SQLSTATE[08004] [1040] Too many connections

Anyone any ideas how to try and prevent these or block them? Suppose difficult is telling whats good and whats not!



You can try out csrf token and captcha to prevent this.