Deny All Firewall

Description

Deny All Firewall

This plugin examines your WordPress installation and injects rules into your .htaccess file which completely block access to everything except genuine site content.

Blocked requests can be logged and unblocked to fine tune your firewall to your specific website.

Currently, new content requires the plugin settings to be saved again in order to allow it through the firewall. We are working to automate this in a future update.

Please contact us through the support forum to let us know immediately if the plugin blocks anthing that it shouldn’t do!

Installation

Easily use this plugin to prevent access to everyting except your site’s content using the .htaccess file …

1) Install “Deny All Firewall” automatically or by uploading the ZIP file.
2) Activate the plugin through the “Plugins” menu in WordPress.
3) From the Dashboard, select “Deny All Firewall” from the “Settings” menu.

Contributors & Developers

“Deny All Firewall” is open source software. The following people have contributed to this plugin.

Contributors

Translate “Deny All Firewall” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.

Changelog

1.2.0

  • Updated log file analyses to include existing directory detection
  • Minor bug fix

1.1.9

  • Minor bug fixes

1.1.8

  • Updated 403 page
  • Updated log file analysis
  • Minor bug fixes

1.1.7

  • CSRF vulnerability fixed

1.1.6

  • Added more whitelisted filetypes to wp-content
  • Fixed a problem with WooCommerce /checkout/order-received/
  • Made whitelisted requests more secure

1.1.5

  • Added more whitelisted filetypes to wp-includes, wp-admin and wp-content

1.1.4

  • Added “Whitelist” / “Unblock” feature

1.1.3

  • Unblocked inactive theme screenshot.png
  • Show if blocked requests exist in log file

1.1.2

  • Unblocked paginated taxonomies
  • Started adding notes to logged blocked requests

1.1.1

  • Bug fixes

1.1.0

  • Blocks user sniffing

1.0.9

  • Created an option to turn on log

1.0.8

  • Bug fix

1.0.7

  • Settings page now shows top twenty blocked requests

1.0.6

  • Unblocked and secured WP-Cron
  • Started logging blocked requests

1.0.5

  • Created a custom 403 page

1.0.4

  • Display status of server’s external IP

1.0.3

  • Locates server’s external IP address and whitelists it for /wp-admin/

1.0.2

  • /wp-admin/ unblocked for logged in client IP now works with Cloudflare

1.0.1

  • Bug fixes

1.0.0

  • First version of the plugin