Every week it seems there is another report about a company that has suffered an embarrassing server hack. This is despite the best efforts of their trained IT staff1 and huge budgets. What's less reported, though, are the thousands of web servers operated by bloggers and casual web site owners that are taken over every single day. I see bots crawling my server every few minutes and it's almost the same pattern every time. Something like this ...
A grand total of 38 stupid requests against my server with the hope that I would be using something like phpMyAdmin2, XAmpp, or an administration panel. All of these would result in a login screen, and many people use very, very simple login credentials.
So ... how does Noteworthy defend against this sort of thing?
One of the future releases of the project will have a little bit of logic in place that will look for this type of activity and automatically ban the IP address from accessing the server. Noteworthy doesn't yet have an administration panel for people to change settings but, when it does, the last thing I'll want to hear is that somebody's site was hacked and their Evernote credentials stolen because I didn't take appropriate precautions. IP filtering isn't a fool proof solution, but it will add one more layer between a zombie and a server.