Black IP List

Resolved Anonymous User 9269003
(@anonymized-9269003)

10 years, 3 months ago

Does BulletP include black IP list already and block them by default?

If not, how can I add black IP list do htaccess?

http://wordpress.org/plugins/bulletproof-security/

Viewing 5 replies - 1 through 5 (of 5 total)

Plugin Author AITpro
(@aitpro)

10 years, 3 months ago

BPS does not include a black IP list/code or bot blocking list/code and leaves this choice up to each website owner to add or not add a bot blocking list, black IP list or other custom blocking code.

You can add any additional custom code you want to add to your website, such as a black IP list or bot blocking code to BPS Custom Code to save it permanently.

1. Copy your bot blocking code, black IP code or other custom blocking code to this BPS Custom Code text box: CUSTOM CODE BOTTOM HOTLINKING/FORBID COMMENT SPAMMERS/BLOCK BOTS/BLOCK IP/REDIRECT CODE: Add miscellaneous code here

2. Click the Save Root Custom Code button.

3. Go to the BPS Security Modes page, click the Create secure.htaccess File AutoMagic button and activate Root folder BulletProof Mode again.

Thread Starter Anonymous User 9269003
(@anonymized-9269003)

10 years, 3 months ago

I got long blacklist.

Is there any way, I put this list in different folder and put link to this list from main htaccess file?

I heard, putting long list to the htaccess directly is not a good option.

Plugin Author AITpro
(@aitpro)

10 years, 3 months ago

Is the blacklist longer than 10,000 lines of code? If so, then YES your website will have a slight performance loss/hit/slowdown of a few milliseconds. If not, then NO your website will NOT have any performance loss/hit/slowdown.

No, you cannot call an .htaccess file from another folder.

.htaccess server configuration files are hierarchical/recursive. Whichever folder you put the .htaccess file in, that folder will have those .htaccess directives/rules/filters applied to that folder and any subfolders if the subfolders do not contain .htaccess files of their own.
Plugin Author AITpro
(@aitpro)

10 years, 3 months ago
FYI – it is always smarter/better/easier/simpler to instead allow IP addresses or other things vs denying IP address or other things. Allow from is a one time thing. Deny from is typically on ongoing thing forever………..

Example using an allow from condition instead of a deny from condition:
```
# Protect wp-login.php from Brute Force Login Attacks based on IP Address
<FilesMatch "^(wp-login\.php)">
Order Allow,Deny
# Add your website domain name
Allow from example.com
# Add your website/Server IP Address
Allow from 69.200.95.1
# Add your Public IP Address using 2 or 3 octets so that if/when
# your IP address changes it will still be in your subnet range. If you
# have a static IP address then use all 4 octets.
# Examples: 2 octets: 65.100. 3 octets: 65.100.50. 4 octets: 65.100.50.1
Allow from 65.100.50.
</FilesMatch>
```
http://forum.ait-pro.com/forums/topic/protect-login-page-from-brute-force-login-attacks/
Plugin Author AITpro
(@aitpro)

10 years, 3 months ago

Assuming all questions have been answered – resolved.

Viewing 5 replies - 1 through 5 (of 5 total)

The topic ‘Black IP List’ is closed to new replies.