mrppp
Forum Replies Created
-
Forum: Plugins
In reply to: [BulletProof Security] RedirectsOk appreciate that.
Forum: Plugins
In reply to: [BulletProof Security] RedirectsSorry copied wrong code would i just add to bottom?
# BRUTE FORCE LOGIN PAGE PROTECTION # Protects the Login page from SpamBots, HackerBots & Proxies # that use Server Protocol HTTP/1.0 or a blank User Agent RewriteCond %{REQUEST_URI} ^(/wp-login\.php|.*wp-login\.php.*)$ RewriteCond %{HTTP_USER_AGENT} ^$ [OR] RewriteCond %{THE_REQUEST} HTTP/1\.0$ [OR] RewriteCond %{SERVER_PROTOCOL} HTTP/1\.0$ RewriteRule ^(.*)$ - [F,L] # BLOCK/FORBID Spammers etc Order Allow,Deny Deny from 195.88.31.48 Deny from 46.105.105.217 Deny from 95.211.156.228 Deny from 178.162.199.35 Deny from 178.162.199.78 Deny from 178.162.199.70 Deny from 95.211.159.93 Deny from 95.211.159.66 Deny from 178.162.199.87 Deny from 186.87.168.204 Deny from 187.94.215.191 Deny from 187.6.232.44 Deny from 151.77.47.183 Deny from 151.77.47.183 Deny from 187.6.232.44 Allow from all # WP AUTHOR ENUMERATION BOT PROBE PROTECTION # Redirects to author=999999 that does not actually exist # which results in a standard 404 error. To the hacker bot # it appears that this author does not exist without giving # any clues that the author does actually exist. RewriteCond %{QUERY_STRING} ^author=([0-9]){1,}$ [NC] RewriteRule ^(.*)$ $1?author=999999 [L]Forum: Plugins
In reply to: [BulletProof Security] RedirectsHi sorry one question, currently in that section i have
# BEGIN BPSQSE BPS QUERY STRING EXPLOITS # The libwww-perl User Agent is forbidden - Many bad bots use libwww-perl modules, but some good bots use it too. # Good sites such as W3C use it for their W3C-LinkChecker. # Add or remove user agents temporarily or permanently from the first User Agent filter below. # If you want a list of bad bots / User Agents to block then scroll to the end of this file. RewriteCond %{HTTP_USER_AGENT} (havij|libwww-perl|wget|python|nikto|curl|scan|java|winhttp|clshttp|loader) [NC,OR] RewriteCond %{HTTP_USER_AGENT} (%0A|%0D|%27|%3C|%3E|%00) [NC,OR] RewriteCond %{HTTP_USER_AGENT} (;|<|>|'|"|\)|\(|%0A|%0D|%22|%27|%28|%3C|%3E|%00).*(libwww-perl|wget|python|nikto|curl|scan|java|winhttp|HTTrack|clshttp|archiver|loader|email|harvest|extract|grab|miner) [NC,OR] RewriteCond %{THE_REQUEST} (\?|\*|%2a)+(%20+|\s+|%20+\s+|\s+%20+|\s+%20+\s+)HTTP(:/|/) [NC,OR] RewriteCond %{THE_REQUEST} etc/passwd [NC,OR] RewriteCond %{THE_REQUEST} cgi-bin [NC,OR] RewriteCond %{THE_REQUEST} (%0A|%0D|\\r|\\n) [NC,OR] RewriteCond %{REQUEST_URI} owssvr\.dll [NC,OR] RewriteCond %{HTTP_REFERER} (%0A|%0D|%27|%3C|%3E|%00) [NC,OR] RewriteCond %{HTTP_REFERER} \.opendirviewer\. [NC,OR] RewriteCond %{HTTP_REFERER} users\.skynet\.be.* [NC,OR] RewriteCond %{QUERY_STRING} [a-zA-Z0-9_]=http:// [NC,OR] RewriteCond %{QUERY_STRING} [a-zA-Z0-9_]=(\.\.//?)+ [NC,OR] RewriteCond %{QUERY_STRING} [a-zA-Z0-9_]=/([a-z0-9_.]//?)+ [NC,OR] RewriteCond %{QUERY_STRING} \=PHP[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12} [NC,OR] RewriteCond %{QUERY_STRING} (\.\./|%2e%2e%2f|%2e%2e/|\.\.%2f|%2e\.%2f|%2e\./|\.%2e%2f|\.%2e/) [NC,OR] RewriteCond %{QUERY_STRING} ftp\: [NC,OR] RewriteCond %{QUERY_STRING} http\: [NC,OR] RewriteCond %{QUERY_STRING} https\: [NC,OR] RewriteCond %{QUERY_STRING} \=\|w\| [NC,OR] RewriteCond %{QUERY_STRING} ^(.*)/self/(.*)$ [NC,OR] RewriteCond %{QUERY_STRING} ^(.*)cPath=http://(.*)$ [NC,OR] RewriteCond %{QUERY_STRING} (\<|%3C).*script.*(\>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} (<|%3C)([^s]*s)+cript.*(>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} (\<|%3C).*embed.*(\>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} (<|%3C)([^e]*e)+mbed.*(>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} (\<|%3C).*object.*(\>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} (<|%3C)([^o]*o)+bject.*(>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} (\<|%3C).*iframe.*(\>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} (<|%3C)([^i]*i)+frame.*(>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} base64_encode.*\(.*\) [NC,OR] RewriteCond %{QUERY_STRING} base64_(en|de)code[^(]*\([^)]*\) [NC,OR] RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR] RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2}) [OR] RewriteCond %{QUERY_STRING} ^.*(\(|\)|<|>|%3c|%3e).* [NC,OR] RewriteCond %{QUERY_STRING} ^.*(\x00|\x04|\x08|\x0d|\x1b|\x20|\x3c|\x3e|\x7f).* [NC,OR] RewriteCond %{QUERY_STRING} (NULL|OUTFILE|LOAD_FILE) [OR] RewriteCond %{QUERY_STRING} (\.{1,}/)+(motd|etc|bin) [NC,OR] RewriteCond %{QUERY_STRING} (localhost|loopback|127\.0\.0\.1) [NC,OR] RewriteCond %{QUERY_STRING} (<|>|'|%0A|%0D|%27|%3C|%3E|%00) [NC,OR] RewriteCond %{QUERY_STRING} concat[^\(]*\( [NC,OR] RewriteCond %{QUERY_STRING} union([^s]*s)+elect [NC,OR] RewriteCond %{QUERY_STRING} union([^a]*a)+ll([^s]*s)+elect [NC,OR] RewriteCond %{QUERY_STRING} \-[sdcr].*(allow_url_include|allow_url_fopen|safe_mode|disable_functions|auto_prepend_file) [NC,OR] RewriteCond %{QUERY_STRING} (;|<|>|'|"|\)|%0A|%0D|%22|%27|%3C|%3E|%00).*(/\*|union|select|insert|drop|delete|update|cast|create|char|convert|alter|declare|order|script|set|md5|benchmark|encode) [NC,OR] RewriteCond %{QUERY_STRING} (sp_executesql) [NC] RewriteRule ^(.*)$ - [F,L] # END BPSQSE BPS QUERY STRING EXPLOITSwould i just add those redirects before # END BPSQSE BPS QUERY STRING EXPLOITS
Forum: Plugins
In reply to: [BulletProof Security] RedirectsExcellent thanks so much for your help and time!
Forum: Plugins
In reply to: [BulletProof Security] RedirectsIs that CUSTOM CODE BOTTOM HOTLINKING/FORBID COMMENT SPAMMERS/BLOCK BOTS/BLOCK IP/REDIRECT CODE: Add miscellaneous code here
Forum: Plugins
In reply to: [BulletProof Security] RedirectsThank You.
So in my case, currently the .htm site is on another server. I will change name servers so my new site is on a totally different server. My old server will not be accessible after this.I assume search engines will then look on my new server for say http://www.mysite.co.uk/rec.htm and i will redirect to http://www.mysite.co.uk/rec/
so in this scenario am i putting in BPS root htaccess file in the Bottom Root Custom Code text box for htaccess redirect code
and if it was a html
RedirectMatch 301 ^/photo.html$ http://www.mysite.co.uk/photo/Forum: Plugins
In reply to: [BulletProof Security] RedirectsHi, well i am currently working on site. Trying to keep names the same. So if i had http://www.mysite.co.uk/rec.htm
it will be http://www.mysite.co.uk/rec/
or
http://www.mysite.co.uk/photo.htm will become
http://www.mysite.co.uk/photo/These will all be pages.
Forum: Plugins
In reply to: [BulletProof Security] RedirectsWell, i currently have a site with 30+ pages all end in /something.htm and i want to eventually redirect the /something.htm to /something/ in WP. so basically redirect a whole site with pages ending .htm to a wp site. A few end in .html but not many
Forum: Plugins
In reply to: [BulletProof Security] Author Enumeration BOT Probe CodeOK hosting company sorted this.
Forum: Plugins
In reply to: [BulletProof Security] messageGreat Thank you that one now works too
Forum: Plugins
In reply to: [BulletProof Security] messageTwo sites work fine but the other still gives same message. Done all exactly the same.version Version .50.3
Forum: Plugins
In reply to: [BulletProof Security] messageThank you.
I think that relates to
To maintain a plugin as big as WordPress SEO, we need to know what we’re dealing with: what kinds of other plugins our users are using, what themes, etc. Please allow us to track that data from your install. It will not track any user details, so your security and privacy are safe with us.But the update specifies “we’re tracking the PHP version for our users now, so we can see whether we, at some point, might drop PHP 5.2 support before WordPress does”
yeah should we not have option to stop this?
Forum: Plugins
In reply to: [Events Manager - Calendar, Bookings, Tickets, and more!] WP Full calendarOK think this fixes the “more”
[events_calendar long_events=1 full=1 country="UK" ]Overide Default Calendar
But looking at the 25th may click more i have 5 events, search that date i have 4 shown