It is a truth universally acknowledged, that a newly booted web server must be in want of a bot constantly attacking /wp-login.php