Hi,
Our customer recently suffered a distributed dos attack/brute force login attempt, this site is hosted on the WPMUDEV hosting.
Fortunately I found a common identifier and the support team responded well to get it blocked by nginx directly, bringing the site back to life.
So based on this a couple of features would be good:
1) I spot checked the ips and they were all on the CBL and Spamhaus ZEN blacklists (with some being on more). I would be good if we had the option to add blacklists to the configuration of the web server to block at this level.
2) Does the nginx server pay attention to the user nginx.conf file (and if so how often does the restart happen), if not can we have access to this (or a similar file) as I could have gotten this implemented a lot quicker with this capability.
Kind regards
Mark