이 플러그인은 최근 3개의 주요 워드프레스 출시와 시험 되지 않았습니다. 워드프레스의 좀 더 최근 버전으로 이용할 때 더 이상 관리되지 않고 지원되지 않고 호환성 문제가 있을 수 있습니다.

WP AntiDDOS

설명

Plugin WP AntiDDOS prevents DDOS attacks on your website by blocking the frequent requests from one or several related IP addresses. This includes HTTP flood and Password cracking attacks. The plugin stores the data in the MySQL table (MEMORY engine), and that ensures its high performance. We recommend to insert a plugin call into the beginning of the index.php file of the WordPress, it will significantly increase its effectiveness, since attack requests will be rejected by plugin before WordPress heavy engine connection. You have to do it manually. (see the instructions on the page with plugin’s Configuration)

How it works

You are setting two main parameters in the Configuration of the plugin – Hits Limit and Seconds Limit. They specify the maximum number of requests from related IP addresses within a certain time. Plugin conciders IP addresses
a.b.c.1
a.b.c.2
a.b.c.3

a.b.c.255
as related, they usually belong to the same LAN, and DDOS attacks are often made from many computers on the local network, because if one computer is infected, the attacker easily can infect others. If the plugin detects that during Seconds Limit from some local network there is more than Hits Limit requests, then excessive requests are blocked – plugin responds by status 503 Service not available with the code, which reloads the page after a while, which is specified in the plugin Configuration as Delay Time. Limits are specified separately for GET, POST, XHR and Login requests.

Search engine compatibility

Sometimes search engines produce enough frequent queries, which can cause blockage by the WP AntiDDOS plugin. However, the plugin does not affect search engine indexation, because a response with status code 502 Service not available is not a content of a page, but a technical reports on its currently unavailability. In any case, we recommend to use Crawl-delay directive in you robots.txt file.

Custom Query Processing

WP AntiDDOS plugin can be configured to handling only a certain types of queries. For example, the search queries load the server most significantly, and therefore are often used to attack sites. In the plugin’s Configuration in the GET or POST parameters that activate DDOS check up text field you can enter POST or GET parameters (blank separated) that identify the requests to be processed by plugin and then set the Process only requests with following GET / POST parameters to Yes. For example, s pwd parameters, which is defined in the text box since plugin has installed, identifies the WordPress’ search queries and Login attemts. Please, note, that you have separate setting for Login requests that is usefull for preventing Password Cracking attacks.

The effectiveness of the plugin

DDOS attacks are very different both by scale and by the used methods. Being a WordPress plugin, WP AntiDDOS is effective against such attacks as HTTP flood, which affect the WordPress engine. They are technically simple and most commonly used for disabling WordPress websites. Usage of the WP AntiDDOS plugin – good practice for basic protection, which is effective in a large number of cases.

설치

This plugin follows the standard WordPress installation
method
:

  1. Upload the wpantiddos folder to the /wp-content/plugins/ directory.
  2. Activate the plugin through the ‘Plugins’ menu in WordPress.

후기

2017년 1월 24일
For such a simple tool, I was surprised this thing really worked. We tried a penetration test from a secondary internet connection only to have it blocked and refused. The primary site kept working without so much as a hiccup. Would love to see the developer update it for the latest version. Yes, this is legit software.
2016년 9월 3일
This plugin really looked promising until I actually implemented it. It worked fine and then… Locked out Administrators Locked out all access from the tor network Caused Caching issues And when deactivated not only did it cast off a ton of not found errors, but also made it so my site unable to delete plugins. I don’t know where this plugin alters things but it doesn’t seem to go away. However with that in mind if you are not using other throttling and balancing it works fine.
모든 3 평가 읽기

기여자 & 개발자

“WP AntiDDOS”(은)는 오픈 소스 소프트웨어입니다. 다음의 사람들이 이 플러그인에 기여하였습니다.

기여자

자국어로 “WP AntiDDOS”(을)를 번역하세요.

개발에 관심이 있으십니까?

코드 탐색하기는, SVN 저장소를 확인하시거나, 개발 기록RSS로 구독하세요.

변경이력

Empty.

Version 1.x

Private release.

Version 2.0

Initial public release.