5,222 attempts to access 'wp-login,php' from the same IP address in 48 minutes (two per second on average, but six connections per second is typical.
The IP addy in question was 403'ed as logins to wp-login.php is accessible only to one IP addy. It's a read only blog.
Is this some weird DDoS attempt, and if so, is it testing the response of Apache with regards connections, and might I expect more of the same?
Or is it just a brute force attempt?
Strange that it was all one IP (in the US as it happens), and after a few 403s, it didn't decide to sod off.