- Jan. 19th, 2009
- 13 comments
Getting hacked is a total bummer, right? Right. But you can stop it with this plugin — WordPress Firewall. It won't stop every determined hacker from zapping your blog — but it's definitely worth installing if you're maintaining more than a few blogs.
After all, you simply can't upgrade every blog instantly every time a vulnerability is published for WordPress or any of the plugins you've got installed. So this plugin might buy you some much-needed time … and sanity.
It investigates web requests with simple WordPress-specific heuristics to identify and stop most obvious attacks.
Here is the basic feature list —
0. Blocks most common attacks by default for WordPress and all of your installed plugins.
1. Emails are sent to a configured email address. They look like this —
2. Lets you whitelist your IP.
3. Lets you whitelist a page, a variable in a page, or a variable on every page. It's pre-configured with some rules that stop it from misbehaving in places where bad-looking data could be found — and vulnerabilities are unlikely to be lurking — comment bodies, post bodies, etc.
Let us know what you think in the comments, or using our feedback form.
"13 Wise Comments Banged Out Somewhere On The Internet ..."
WordPress Firewall Script at I Hate Google.org - Search Engine Optimization News and Tidbits (a.k.a. I Love Google.org)
[...] Sirovich just sent me a Facebook chat about his new WordPress Firewall script. I just installed it, and will post my thoughts about it when I've had a chance to evaluate [...]
[...] the WordPress Firewall plugin. This is great at stopping most intrusion attempts and is the second line of defense. If this [...]