這個外掛並未在最新的 3 個 WordPress 主要版本上進行測試。開發者可能不再對這個外掛進行維護或提供技術支援,並可能會與更新版本的 WordPress 產生使用上的相容性問題。

Botnet Attack Blocker

描述

After the recent global distributed botnet attack on WordPress installations that took down servers and broke into admin accounts, I thought I’d write a plugin to prevent it happening again.

Distributed botnet attacks can come from multiple IP addresses and locations at the same time, so conventional IP-based lockouts are not effective (e.g. those found in Wordfence and other WordPress security plugins).

For example, if 1,000 different computers (with unique IP addresses) are trying to brute-force your admin password and you lock out each IP address after 5 incorrect attempts then you have still allowed 5,000 attempts. My plugin essentially ignores the different IP addresses and locks out all admin login attempts in a configurable way – so if you have it set to 5 failed attempts (default) then those 1,000 different computers will only have a total between them of 5 attempts.

You can select how many login failures causes the lockout, how much time to allow between failures, how long to block logins for and also you can input a whitelisted IP address (or multiple addresses separated with commas or spaces) which can bypass the lockdown and always log in – so you can still always get into your site even in the middle of an attack. There is also support for partial IP address matching for those with dynamic IP addresses. You can also define a secret key to bypass the lock.

  • Any failed login is counted regardless of username or IP address (unless whitelisted)
  • Once locked down, nobody can log in except from whitelisted IP addresses or using the secret key
  • You can specify the number of login failures that triggers a lockdown
  • You can specify the time between failed attempts that should be counted
  • You can specify how long the lockdown should last
  • You can add a secret key that bypasses the lockdown
  • You can customise the lockout message
  • You can add whitelisted IP addresses that bypass the lockdown
  • Partial IP address matching for dynamically-allocated IP addresses
  • Multisite compatible
  • Available in English, French, German, Italian and Russian

螢幕截圖

  • Simple admin screen to change plugin options.

安裝

  1. Upload botnet-attack-blocker.php to the /wp-content/plugins/ directory
  2. Activate the plugin through the ‘Plugins’ menu in WordPress
  3. Navigate to Settings, Botnet Blocker to configure your settings

常見問題

Installation Instructions
  1. Upload botnet-attack-blocker.php to the /wp-content/plugins/ directory
  2. Activate the plugin through the ‘Plugins’ menu in WordPress
  3. Navigate to Settings, Botnet Blocker to configure your settings
How do I configure the plugin?

Navigate to Settings and then Botnet Blocker, change the options and click Update.

Can I whitelist multiple IP addresses?

Yes, separate them by a space or comma.

Can I whitelist partial IP addresses?

Yes, just type in the IP part to match, e.g. 1.2 or 1.2.3 and leave out the part to ignore. This will allow dynamically-allocated IP addresses in the whitelist.

評價

There are no reviews for this plugin.

貢獻者及開發者

“Botnet Attack Blocker” 是一個開源的軟體。以下的人對這個外掛作出了貢獻。

貢獻者

將 Botnet Attack Blocker 外掛本地化為台灣繁體中文版。

對開發相關資訊感興趣?

任何人均可瀏覽程式碼、查看 SVN 存放庫,或透過 RSS 訂閱開發記錄

修改日誌

2.0.0

  • Add secret key option
  • Add customised message

1.9.1

  • Bugfix for whitelist errors

1.9

  • Improve table deletion on deactivation

1.8

  • Multisite compatible for individual or network activation
  • Add 24 hour blocking option

1.7

  • Remove options and plugin table on deactivation
  • Change init hooks to run less often

1.6

  • Bugfix – fix invalid header on activation.

1.5

  • Bugfix – unquoted text amended thanks to John Dorner.

1.4

  • Bugfix – added check for blank whitelist.

1.3

  • Added French, German and Russian translations (my own, feel free to suggest corrections).

1.2

  • Added Italian translation thanks to Giacinto (www.iononmollo.it).

1.1

  • Added translation support.
  • Added partial IP whitelist matching (for dynamic IPs).

1.0

  • Initial release.