Support » Plugin: All In One WP Security & Firewall » High server CPU with proxy login

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi haleeben, yes it might have to do with the wifi proxy settings in the hotel however that should not increase your sever CPU so much. I don’t receive any spike in my server and I also have that security option enabled.

    Do you have any other security plugin installed?

    Regards.

    I’m pretty sure that code is a bit in error. You cannot concatenate conditions like that. You could use atomic back references to do a comparison, but it still wouldn’t work like that.

    Also, using the “everything pattern” at the end of a string is not needed, because it means the same thing whether it is there or not. So why use it?

    And I’m not aware of any proxy condition using HTTP headers that would be an internal request. So you shouldn’t need the NS flag. Nor should you need the L flag, because L is assumed with F.
    http://httpd.apache.org/docs/2.2/rewrite/flags.html#flag_f

    RewriteCond %{REQUEST_METHOD} ^POST
    RewriteCond %{HTTP:VIA} !^$ [OR]
    RewriteCond %{HTTP:FORWARDED} !^$ [OR]
    RewriteCond %{HTTP:USERAGENT_VIA} !^$ [OR]
    RewriteCond %{HTTP:X_FORWARDED_FOR} !^$ [OR]
    RewriteCond %{HTTP:X_FORWARDED_HOST} !^$ [OR]
    RewriteCond %{HTTP:PROXY_CONNECTION} !^$ [OR]
    RewriteCond %{HTTP:XPROXY_CONNECTION} !^$ [OR]
    RewriteCond %{HTTP:HTTP_PC_REMOTE_ADDR} !^$ [OR]
    RewriteCond %{HTTP:HTTP_CLIENT_IP} !^$
    RewriteCond %{REQUEST_URI} !^/wp-(login.php|admin/|content/plugins/|includes/) [NC]
    RewriteRule .* - [F]

    I’ve included a bonus condition in there if you can find it. 🙂

    But that brings up another question. If you’re only wanting to use this with comments, why use that request_uri condition. Why not just make it for the file itself. This code below is much smoother:

    RewriteCond %{REQUEST_METHOD} ^POST
    RewriteCond %{HTTP:VIA} !^$ [OR]
    RewriteCond %{HTTP:FORWARDED} !^$ [OR]
    RewriteCond %{HTTP:USERAGENT_VIA} !^$ [OR]
    RewriteCond %{HTTP:X_FORWARDED_FOR} !^$ [OR]
    RewriteCond %{HTTP:X_FORWARDED_HOST} !^$ [OR]
    RewriteCond %{HTTP:PROXY_CONNECTION} !^$ [OR]
    RewriteCond %{HTTP:XPROXY_CONNECTION} !^$ [OR]
    RewriteCond %{HTTP:HTTP_PC_REMOTE_ADDR} !^$ [OR]
    RewriteCond %{HTTP:HTTP_CLIENT_IP} !^$
    RewriteRule wp-comments-post\.php - [F]
    Plugin Author mra13

    (@mra13)

    @thomas, Thank you for the good suggestions. We will make some changes to this feature.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘High server CPU with proxy login’ is closed to new replies.