| English
קשר מהיר
077-5356264

אבטחת וורדפרס

פורסם על ידי ב אוגוסט 12, 2013  |  אין תגובות

אל תשתמשו בשם המשתמש Admin

אם אתם משתמשים בשם משתמש admin אז אתם טועים!
בצעו את השינויים הדרושים ב-MySQL:

UPDATE wp_users SET user_login='newuser' WHERE user_login='admin';

או צרו משתמש חדש ייחודי עם הרשאות מנהל.
לאחר מכן מחקו את שם המשתמש admin.

הפכו את האתר שלכם קשה לפריצה. אם האקרים יודעים את שם המשתמש שלכם, אז זה חצי העבודה על הפריצה.

הגדרו את רמת גישה לקבצים ולתיקיות

  • לקבצים רמת גישה צריכה להיות 644
  • לתיקיות – 755

התחילו עם רמה נמוכה יותר. אם אתם לא מצליחים להעלות קבצים, תעלו רמה ל 775. אנחנו ממליצים לכם לא להשתמש ברמה הגבוהה ביותר של 777.

רמת גישה תלויה בתצורת השרת.

רמת גישה ניתן לשנות באמצעות FTP:

wp-security-ftp1

wp-security-ftp2

או דרך SHELL עם הפקודות הבאות:

find [your path here] -type d -exec chmod 755 {} \;
find [your path here] -type f -exec chmod 644 {} \;

לדוגמה, אם אתם נמצאים בספרייה הראשית של האתר שלכם תפעילו את הפקודות הבאות:

find ./ -type d -exec chmod 755 {} \;
find ./ -type f -exec chmod 644 {} \;

תזיזו קובץ wp-config.php

החל מוורדפרס 2.6 יש לכם ההזדמנות להעביר את קובץ wp-config.php בספרייה אחת מעל הספרייה הראשית.
אם וורדפרס נמצא כאן:

public_html/wordpress/wp-config.php

אתם יכולים להעביר את קובץ wp-config.php שלכם לכאן:

public_html/wp-config.php

וורדפרס בודק באופן אוטומטי את ספריית ההורה, אם קובץ wp-config.php אינו נמצא בספריית השורש.
זה עושה את זה כמעט בלתי אפשרי לגשת לקובץ wp-config.php, המתגורר כעת מחוץ לספריית השורש של האתר שלכם.

שנו שם / תעבירו את ספריית wp-content

וורדפרס 2.6 מספק את היכולת להעביר ולשנות את שם של ספריית wp-content.
1. שנו שם / העבירו את ספריית wp-content
2. הוסיפו ב wp-config.php:

define( 'WP_CONTENT_DIR', $_SERVER['DOCUMENT_ROOT'] . '/blog/wp-content_newName' );
define( 'WP_CONTENT_URL', 'http://'.$_SERVER["SERVER_NAME"].'/blog/wp-content_newName');

אם נתקלתם בבעיות תאימות עם תוספות, יש שתי אפשרויות נוספות:

define( 'WP_PLUGIN_DIR', $_SERVER['DOCUMENT_ROOT'] . '/blog/wp-content_newName/plugins' );
define( 'WP_PLUGIN_URL', 'http://'.$_SERVER["SERVER_NAME"].'/blog/wp-content_newName/plugins');

אם האקרים לא יכולים למצוא את הספריית wp-content, הם לא יפרצו אותה!

תשמרו על וורדפרס מעודכן

מייד עדכנו את וורדפרס, ערכות עיצוב וכל הפלאגינים אחרי פרסום עדכון, תשמרו על האתר שלכם מעודכן.
עדכנו פלאגין Automatic Updater, כדי לעדכן את האתר שלכם אוטומטית.

תשתמשו בסיסמות חזקות

תשתמשו בסיסמות חזקות כדי להגן על האתר שלכם מהתקפות מילון, לא רק עבור וורדפרס, אלא גם עבור FTP, MySQL, וכן הלאה.

סיסמא חלשה: bradrules

סיסמא חזקה: S-gnop2D[6@8

וורדפרס יספר לכם על הרמת החוזק של סיסמא:

pass_strong

משאב מצוין: goodpassword.com מייצר סיסמאות אקראיות

wp-security-passgen

תשתמשו במפתחות סודיים

המפתח הסודי הוא מוצפן, מה שהופך את אתר האינטרנט שלכם קשה לפריצה על ידי הוספת אלמנטים אקראיים לסיסמא.
1. ערוך את wp-config.php
2. בקר בכתובת הזאת כדי להשיג מפתחות סודיים: https://api.wordpress.org/secret-key/1.1/salt

לפני:

define('AUTH_KEY',         'enter a unique phrase here');
define('SECURE_AUTH_KEY',  'enter a unique phrase here');
define('LOGGED_IN_KEY',    'enter a unique phrase here');
define('NONCE_KEY',        'enter a unique phrase here');
define('AUTH_SALT',        'enter a unique phrase here');
define('SECURE_AUTH_SALT', 'enter a unique phrase here');
define('LOGGED_IN_SALT',   'enter a unique phrase here');
define('NONCE_SALT',       'enter a unique phrase here');

אחרי:

define('AUTH_KEY',         '7W+;7z.x OFG;K]myuH9H|zbSjpDm|rXj2}qOx(6otKpET|;9 =C_)Rh7Xh,u,*q’);
define(‘SECURE_AUTH_KEY’,  ‘[/#F]GA]8fcLMh587Gy.cZ8Ee Mpxde4g  Cnb3._^K7wkJ]N}-WmoxA[n4(z');
define('LOGGED_IN_KEY',    'k|/]O[`gAt[5dB9jnI`YMM#oEnx;t:=)H#{D1L4!EdS=/f_%wt?SwdTxbH=uqJ(');
define('NONCE_KEY',        'k|{QXU;P-wh~cP}Jf^6t6__;WW/+!i#{8ROzr)443H^GH]c/K[:Aax(7O%ZAh>7');
define('AUTH_SALT',        'Vowlz[f4Y`Gi9Hfk4|JW0/UtYwW2FNdR76CK2=twFkOUeleOd%:BC)]i&McUL|t:’);
define(‘SECURE_AUTH_SALT’, ‘Cb}K(v[d&wp[/%7fs|peWanPdzQ;1,]=eqJmapA]gx*-)]d#%|N+-?ipYXRR=+y}’);
define(‘LOGGED_IN_SALT’,   ‘qQV(RKeE$4.?lRV_xb?~K5_}WD8=6ljj%X-.cy|y!(sfddo(B&Y/pu1+[)N+:Q! ');
define('NONCE_SALT',       'Y{NFMJrA]{y/}x@r,A ~mU:&Kz-K}h,pG$|!Wqn/QLVHeoV!U~dl3L9p_xh)j’);

אתם יכולים להוסיף / לשנות את המפתחות הסודיים בכל עת. זה עלול לגרום לביטולו של כל העוגייה הקיימת ודורש ממשתמשים להתחבר שוב.

שנו את קידומת טבלאות וורדפרס

1. ערכו את wp-config.php לפני ההתקנת וורדפרס
2. שנו קידומת wp_ למשהו ייחודי:

/**
* WordPress Database Table prefix.
*
* You can have multiple installations in one database if you give each a unique
* prefix. Only numbers, letters, and underscores please!
*/
$table_prefix = ‘zztop_';

לכל הטבלאות במסד הנתונים כעת יש קידומת ייחודית (כלומר zztop_).

נעילת ספריה wp-admin

1. צור קובץ htaccess. בספרייה wp-admin
2. הוסיפו את שורות הקוד הבאות אם אתם מנהלים אתר דרך IP ספציפי

AuthUserFile /dev/null
AuthGroupFile /dev/null
AuthName "Access Control"
AuthType Basic
order deny,allow
deny from all
#IP address to Whitelist
allow from 67.123.83.59

כעת רק משתמש עם IP של 67.123.83.59 יקבל גישה ל wp-admin.

– או –

2. הוסיפו את שורות הקוד הבאות אם אתם רוצים לתת גישה ל wp-admin רק למשתמשים מישראל:

AuthUserFile /dev/null
AuthGroupFile /dev/null
AuthName "Access Control"
AuthType Basic
order deny,allow
deny from all
#ID address to Whitelist

#Israel only

Allow from	2.52.0.0/14
Allow From	5.22.128.0/24
Allow from	5.28.128.0/22
Allow from      5.28.180.0/22
Allow from      5.28.184.0/22
Allow from	31.25.112.0/21
Allow from	31.44.128.0/20
Allow from	31.154.0.0/16
Allow from	31.168.0.0/16
Allow from	31.210.176.0/20
Allow from	37.19.112.0/20
Allow from	37.26.144.0/21
Allow from	37.46.32.0/20
Allow from	37.60.40.0/21
Allow from	37.61.224.0/21
Allow from	37.122.152.0/21
Allow from	37.142.0.0/16
Allow from	46.19.80.0/21
Allow from	46.31.96.0/21
Allow from	46.116.0.0/15
Allow from	46.117.0.0/16
Allow from	46.120.0.0/15
Allow from	46.121.0.0/16
Allow from	46.183.88.0/21
Allow from	46.210.0.0/16
Allow from	46.228.144.0/20
Allow from	62.0.0.0/16
Allow from	62.56.128.0/17
Allow from	62.90.0.0/16
Allow from	62.122.224.0/21
Allow from	62.128.32.0/19
Allow from	62.219.0.0/16
Allow from	77.124.0.0/14
Allow from	79.176.0.0/13
Allow from      79.181.96.0/20
Allow from      79.183.224.0/20
Allow from	80.70.128.0/20
Allow from	80.74.96.0/20
Allow from	80.74.112.0/20
Allow from	80.178.0.0/15
Allow from	80.179.0.0/16
Allow from	80.230.0.0/16
Allow from	80.244.160.0/20
Allow from	80.246.128.0/20
Allow from	80.250.144.0/20
Allow from	81.5.0.0/18
Allow from	81.199.0.0/16
Allow from	81.218.0.0/16
Allow from	82.80.0.0/16
Allow from	82.81.0.0/16
Allow from	82.102.128.0/18
Allow from	82.166.0.0/16
Allow from	83.130.0.0/16
Allow from	83.143.8.0/21
Allow from	84.94.0.0/16
Allow from	84.95.0.0/16
Allow from	84.108.0.0/14
Allow from	84.111.0.0/20
Allow from	84.228.0.0/16
Allow from	84.229.0.0/16
Allow from	85.64.0.0/15
Allow from	85.65.0.0/16
Allow from	85.130.128.0/17
Allow from	85.159.160.0/21
Allow from	85.250.0.0/16
Allow from	87.68.0.0/14
Allow from	89.138.0.0/15
Allow from	89.139.0.0/16
Allow from	91.90.128.0/20
Allow from	91.135.96.0/20
Allow from	91.143.224.0/20
Allow from	91.193.4.0/22
Allow from	91.193.48.0/22
Allow from	91.194.4.0/23
Allow from	91.194.114.0/23
Allow from	91.195.162.0/23
Allow from	91.197.60.0/22
Allow from	91.197.100.0/22
Allow from	91.198.5.0/24
Allow from	91.198.70.0/24
Allow from	91.198.129.0/24
Allow from	91.198.205.0/24
Allow from	91.198.254.0/24
Allow from	91.199.29.0/24
Allow from	91.199.53.0/24
Allow from	91.199.69.0/24
Allow from	91.199.94.0/24
Allow from	91.199.99.0/24
Allow from	91.199.100.0/24
Allow from	91.199.119.0/24
Allow from	91.199.202.0/24
Allow from	91.199.215.0/24
Allow from	91.200.144.0/22
Allow from	91.202.168.0/22
Allow from	91.203.120.0/22
Allow from	91.205.152.0/22
Allow from	91.206.170.0/23
Allow from	91.207.34.0/23
Allow from	91.207.90.0/23
Allow from	91.207.206.0/23
Allow from	91.207.240.0/23
Allow from	91.208.86.0/24
Allow from	91.208.118.0/24
Allow from	91.208.129.0/24
Allow from	91.208.139.0/24
Allow from	91.208.140.0/24
Allow from	91.208.147.0/24
Allow from	91.208.218.0/24
Allow from	91.209.113.0/24
Allow from	91.209.182.0/24
Allow from	91.212.76.0/24
Allow from	91.212.114.0/24
Allow from	91.212.189.0/24
Allow from	91.213.152.0/24
Allow from	91.213.176.0/24
Allow from	91.214.100.0/22
Allow from	91.216.31.0/24
Allow from	91.216.210.0/24
Allow from	91.216.222.0/24
Allow from	91.216.252.0/24
Allow from	91.217.219.0/24
Allow from	91.220.9.0/24
Allow from	91.220.22.0/24
Allow from	91.220.30.0/24
Allow from	91.221.222.0/23
Allow from	91.223.11.0/24
Allow from	91.223.54.0/24
Allow from	91.223.106.0/24
Allow from	91.226.245.0/24
Allow from	91.227.70.0/23
Allow from	91.227.164.0/23
Allow from	91.228.126.0/23
Allow from	91.228.162.0/23
Allow from	91.228.248.0/24
Allow from	91.230.79.0/24
Allow from	91.230.236.0/24
Allow from	91.231.192.0/22
Allow from	91.235.107.0/24
Allow from	91.235.150.0/23
Allow from	92.61.224.0/20
Allow from	92.240.0.0/19
Allow from	93.94.40.0/21
Allow from	93.157.80.0/21
Allow from	93.172.0.0/15
Allow from	93.173.0.0/16
Allow from	93.175.32.0/19
Allow from	94.127.72.0/21
Allow from	94.159.128.0/17
Allow from	94.188.128.0/17
Allow from	94.230.80.0/20
Allow from	95.35.0.0/16
Allow from	95.86.64.0/18
Allow from	95.129.32.0/21
Allow from	95.142.16.0/20
Allow from	95.175.32.0/19
Allow from	95.215.128.0/22
Allow from	109.64.0.0/14
Allow from	109.95.128.0/21
Allow from	109.160.128.0/17
Allow from	109.186.0.0/16
Allow from	109.226.0.0/18
Allow from	109.234.16.0/21
Allow from	109.253.0.0/16
Allow from	128.139.0.0/16
Allow from	130.255.72.0/21
Allow from	132.64.0.0/16
Allow from	132.65.0.0/16
Allow from	132.66.0.0/16
Allow from	132.67.0.0/16
Allow from	132.68.0.0/16
Allow from	132.69.0.0/16
Allow from	132.70.0.0/16
Allow from	132.71.0.0/16
Allow from	132.72.0.0/16
Allow from	132.73.0.0/16
Allow from	132.74.0.0/16
Allow from	132.75.0.0/16
Allow from	132.76.0.0/16
Allow from	132.77.0.0/16
Allow from	132.78.0.0/16
Allow from	138.134.0.0/16
Allow from	141.226.0.0/16
Allow from	146.185.56.0/21
Allow from	147.161.0.0/16
Allow from	147.233.0.0/16
Allow from	147.234.0.0/16
Allow from	147.235.0.0/16
Allow from	147.236.0.0/16
Allow from	147.237.0.0/16
Allow from	149.49.0.0/16
Allow from	149.126.72.0/21
Allow from	159.253.248.0/21
Allow from	164.138.112.0/20
Allow from	176.12.128.0/17
Allow from	176.13.0.0/16
Allow from	176.106.224.0/21
Allow from	176.228.0.0/14
Allow from	176.241.112.0/21
Allow from	178.214.64.0/19
Allow from	178.215.208.0/20
Allow from	178.249.104.0/21
Allow from	188.64.96.0/21
Allow from	188.64.200.0/21
Allow from	188.120.128.0/19
Allow from	192.86.25.0/24
Allow from	192.86.89.0/24
Allow from	192.114.0.0/24
Allow from	192.114.1.0/24
Allow from	192.114.2.0/24
Allow from	192.114.3.0/24
Allow from	192.114.4.0/24
Allow from	192.114.5.0/24
Allow from	192.114.6.0/24
Allow from	192.114.7.0/24
Allow from	192.114.8.0/24
Allow from	192.114.9.0/24
Allow from	192.114.10.0/24
Allow from	192.114.11.0/24
Allow from	192.114.12.0/24
Allow from	192.114.13.0/24
Allow from	192.114.14.0/24
Allow from	192.114.15.0/24
Allow from	192.114.16.0/24
Allow from	192.114.17.0/24
Allow from	192.114.18.0/24
Allow from	192.114.19.0/24
Allow from	192.114.20.0/24
Allow from	192.114.21.0/24
Allow from	192.114.22.0/24
Allow from	192.114.23.0/24
Allow from	192.114.24.0/24
Allow from	192.114.25.0/24
Allow from	192.114.26.0/24
Allow from	192.114.27.0/24
Allow from	192.114.28.0/24
Allow from	192.114.29.0/24
Allow from	192.114.30.0/24
Allow from	192.114.31.0/24
Allow from	192.114.32.0/24
Allow from	192.114.33.0/24
Allow from	192.114.34.0/24
Allow from	192.114.35.0/24
Allow from	192.114.36.0/24
Allow from	192.114.37.0/24
Allow from	192.114.38.0/24
Allow from	192.114.39.0/24
Allow from	192.114.40.0/24
Allow from	192.114.41.0/24
Allow from	192.114.42.0/24
Allow from	192.114.43.0/24
Allow from	192.114.44.0/24
Allow from	192.114.45.0/24
Allow from	192.114.46.0/24
Allow from	192.114.47.0/24
Allow from	192.114.48.0/24
Allow from	192.114.49.0/24
Allow from	192.114.50.0/24
Allow from	192.114.51.0/24
Allow from	192.114.52.0/24
Allow from	192.114.53.0/24
Allow from	192.114.54.0/24
Allow from	192.114.55.0/24
Allow from	192.114.56.0/24
Allow from	192.114.57.0/24
Allow from	192.114.58.0/24
Allow from	192.114.59.0/24
Allow from	192.114.60.0/24
Allow from	192.114.61.0/24
Allow from	192.114.62.0/24
Allow from	192.114.63.0/24
Allow from	192.114.64.0/24
Allow from	192.114.65.0/24
Allow from	192.114.66.0/24
Allow from	192.114.67.0/24
Allow from	192.114.68.0/24
Allow from	192.114.69.0/24
Allow from	192.114.70.0/24
Allow from	192.114.71.0/24
Allow from	192.114.72.0/24
Allow from	192.114.73.0/24
Allow from	192.114.74.0/24
Allow from	192.114.75.0/24
Allow from	192.114.76.0/24
Allow from	192.114.77.0/24
Allow from	192.114.78.0/24
Allow from	192.114.79.0/24
Allow from	192.114.80.0/24
Allow from	192.114.81.0/24
Allow from	192.114.82.0/24
Allow from	192.114.83.0/24
Allow from	192.114.84.0/22
Allow from	192.114.88.0/21
Allow from	192.114.96.0/20
Allow from	192.114.112.0/21
Allow from	192.114.120.0/22
Allow from	192.114.124.0/22
Allow from	192.114.128.0/20
Allow from	192.114.144.0/24
Allow from	192.114.145.0/24
Allow from	192.114.146.0/23
Allow from	192.114.148.0/22
Allow from	192.114.152.0/24
Allow from	192.114.153.0/24
Allow from	192.114.154.0/24
Allow from	192.114.155.0/24
Allow from	192.114.156.0/24
Allow from	192.114.157.0/24
Allow from	192.114.158.0/24
Allow from	192.114.159.0/24
Allow from	192.114.160.0/19
Allow from	192.114.192.0/18
Allow from	192.115.0.0/16
Allow from	192.116.0.0/17
Allow from	192.116.128.0/18
Allow from	192.116.192.0/18
Allow from	192.117.0.0/17
Allow from	192.117.128.0/18
Allow from	192.117.192.0/18
Allow from	192.118.0.0/16
Allow from	192.132.244.0/24
Allow from	192.133.36.0/24
Allow from	192.160.252.0/24
Allow from	192.189.70.0/24
Allow from	192.206.86.0/24
Allow from	192.206.222.0/24
Allow from	192.206.223.0/24
Allow from	192.206.224.0/24
Allow from	192.206.225.0/24
Allow from	192.206.226.0/24
Allow from	193.16.147.0/24
Allow from	193.16.238.0/24
Allow from	193.17.42.0/24
Allow from	193.17.68.0/24
Allow from	193.17.74.0/24
Allow from	193.22.80.0/24
Allow from	193.27.92.0/23
Allow from	193.28.155.0/24
Allow from	193.30.161.0/24
Allow from	193.33.16.0/23
Allow from	193.33.234.0/23
Allow from	193.34.56.0/22
Allow from	193.36.176.0/24
Allow from	193.37.128.0/23
Allow from	193.37.130.0/24
Allow from	193.39.79.0/24
Allow from	193.41.202.0/24
Allow from	193.41.208.0/23
Allow from	193.43.244.0/22
Allow from	193.46.64.0/24
Allow from	193.47.165.0/24
Allow from	193.47.248.0/24
Allow from	193.93.96.0/22
Allow from	193.104.44.0/24
Allow from	193.104.62.0/24
Allow from	193.104.77.0/24
Allow from	193.104.115.0/24
Allow from	193.104.117.0/24
Allow from	193.104.119.0/24
Allow from	193.104.147.0/24
Allow from	193.105.99.0/24
Allow from	193.105.199.0/24
Allow from	193.105.203.0/24
Allow from	193.106.52.0/22
Allow from	193.106.204.0/22
Allow from	193.108.195.0/24
Allow from	193.108.211.0/24
Allow from	193.109.78.0/23
Allow from	193.109.82.0/24
Allow from	193.110.2.0/23
Allow from	193.138.92.0/24
Allow from	193.142.151.0/24
Allow from	193.150.127.0/24
Allow from	193.160.33.0/24
Allow from	193.169.70.0/23
Allow from	193.169.88.0/23
Allow from	193.169.104.0/23
Allow from	193.169.246.0/23
Allow from	193.178.218.0/24
Allow from	193.178.220.0/24
Allow from	193.186.2.0/24
Allow from	193.186.163.0/24
Allow from	193.200.30.0/24
Allow from	193.200.154.0/24
Allow from	193.201.155.128/25
Allow from	193.218.207.128/25
Allow from	193.222.129.0/24
Allow from	193.238.28.0/22
Allow from	193.238.188.0/22
Allow from	193.238.208.0/22
Allow from	193.239.108.0/22
Allow from	193.243.183.128/26
Allow from	193.254.206.0/23
Allow from	194.1.145.0/24
Allow from	194.8.76.0/23
Allow from	194.8.88.0/23
Allow from	194.11.19.0/24
Allow from	194.29.32.0/20
Allow from	194.31.58.0/24
Allow from	194.50.71.0/24
Allow from	194.50.175.0/24
Allow from	194.54.168.0/22
Allow from	194.56.215.0/24
Allow from	194.88.136.0/23
Allow from	194.90.0.0/19
Allow from	194.90.32.0/19
Allow from	194.90.64.0/18
Allow from	194.90.128.0/17
Allow from	194.110.249.0/24
Allow from	194.114.146.0/23
Allow from	194.116.226.0/23
Allow from	194.116.230.0/23
Allow from	194.150.218.0/23
Allow from	194.153.101.0/24
Allow from	194.177.16.0/22
Allow from	194.187.84.0/22
Allow from	194.213.4.0/24
Allow from	194.213.108.0/23
Allow from	194.242.24.0/23
Allow from	194.247.166.0/23
Allow from	195.2.250.0/23
Allow from	195.10.194.0/24
Allow from	195.10.220.0/24
Allow from	195.10.222.0/24
Allow from	195.18.8.0/22
Allow from	195.22.148.0/23
Allow from	195.28.166.0/23
Allow from	195.28.180.0/23
Allow from	195.35.85.0/24
Allow from	195.47.252.0/24
Allow from	195.60.176.0/23
Allow from	195.60.232.0/22
Allow from	195.62.18.0/23
Allow from	195.62.30.0/23
Allow from	195.66.118.0/24
Allow from	195.72.116.0/22
Allow from	195.72.120.0/21
Allow from	195.78.120.0/23
Allow from	195.82.128.0/23
Allow from	195.85.254.0/24
Allow from	195.88.234.0/23
Allow from	195.93.234.0/23
Allow from	195.95.183.0/24
Allow from	195.110.40.0/23
Allow from	195.128.145.0/24
Allow from	195.128.176.0/23
Allow from	195.137.164.0/24
Allow from	195.160.240.0/22
Allow from	195.162.66.0/23
Allow from	195.177.108.0/22
Allow from	195.182.33.0/24
Allow from	195.189.140.0/23
Allow from	195.189.192.0/23
Allow from	195.190.19.0/24
Allow from	195.190.23.0/24
Allow from	195.191.52.0/23
Allow from	195.200.92.0/23
Allow from	195.200.205.0/24
Allow from	195.200.238.0/23
Allow from	195.211.68.0/22
Allow from	195.216.252.0/24
Allow from	195.225.46.0/23
Allow from	195.225.62.0/23
Allow from	195.234.26.0/23
Allow from	195.242.118.0/23
Allow from	195.242.174.0/24
Allow from	195.244.22.0/23
Allow from	195.245.108.0/23
Allow from	195.250.33.0/24
Allow from      199.203.0.0/16
Allow from	204.52.208.0/24
Allow from	212.25.64.0/19
Allow from	212.25.96.0/19
Allow from	212.29.192.0/19
Allow from	212.29.224.0/19
Allow from	212.48.64.0/19
Allow from	212.68.128.0/19
Allow from	212.76.96.0/19
Allow from	212.116.160.0/19
Allow from	212.117.128.0/19
Allow from	212.143.0.0/16
Allow from	212.150.0.0/16
Allow from	212.179.0.0/17
Allow from	212.179.128.0/17
Allow from	212.199.0.0/16
Allow from	212.199.128.0/17
Allow from	212.235.0.0/17
Allow from	213.8.0.0/16
Allow from	213.57.0.0/16
Allow from	213.137.64.0/19
Allow from	213.151.32.0/19
Allow from	213.173.32.0/19
Allow from	217.21.64.0/20
Allow from	217.21.80.0/20
Allow from	217.22.112.0/20
Allow from	217.65.32.0/20
Allow from	217.132.0.0/16
Allow from	217.194.192.0/20

נעילת קובץ wp-login.php

1. צרו קובץ htaccess. בספרייה הראשית שלכם
2. הוסיפו את שורות הקוד הבאות:

<Files wp-login.php>
AuthUserFile /dev/null
AuthGroupFile /dev/null
Order Deny,Allow
Deny from all
Allow from 67.123.83.59
</Files>

כעת רק משתמש עם IP של 67.123.83.59 יקבל גישה ל wp-login.php.

– או –

2. הוסיפו את שורות הקוד הבאות אם אתם רוצים לתת גישה ל wp-login.php רק למשתמשים מישראל:

<Files "wp-login.php">
AuthUserFile /dev/null
AuthGroupFile /dev/null
AuthName "Access Control"
AuthType Basic
order deny,allow
deny from all

#ID address to Whitelist
#Israel only

Allow from	2.52.0.0/14
Allow from	5.22.128.0/24
Allow from	5.28.128.0/22
Allow from      5.28.180.0/22
Allow from      5.28.184.0/22
Allow from	31.25.112.0/21
Allow from	31.44.128.0/20
Allow from	31.154.0.0/16
Allow from	31.168.0.0/16
Allow from	31.210.176.0/20
Allow from	37.19.112.0/20
Allow from	37.26.144.0/21
Allow from	37.46.32.0/20
Allow from	37.60.40.0/21
Allow from	37.61.224.0/21
Allow from	37.122.152.0/21
Allow from	37.142.0.0/16
Allow from	46.19.80.0/21
Allow from	46.31.96.0/21
Allow from	46.116.0.0/15
Allow from	46.117.0.0/16
Allow from	46.120.0.0/15
Allow from	46.121.0.0/16
Allow from	46.183.88.0/21
Allow from	46.210.0.0/16
Allow from	46.228.144.0/20
Allow from	62.0.0.0/16
Allow from	62.56.128.0/17
Allow from	62.90.0.0/16
Allow from	62.122.224.0/21
Allow from	62.128.32.0/19
Allow from	62.219.0.0/16
Allow from	77.124.0.0/14
Allow from	79.176.0.0/13
Allow from      79.181.96.0/20
Allow from      79.183.224.0/20
Allow from	80.70.128.0/20
Allow from	80.74.96.0/20
Allow from	80.74.112.0/20
Allow from	80.178.0.0/15
Allow from	80.179.0.0/16
Allow from	80.230.0.0/16
Allow from	80.244.160.0/20
Allow from	80.246.128.0/20
Allow from	80.250.144.0/20
Allow from	81.5.0.0/18
Allow from	81.199.0.0/16
Allow from	81.218.0.0/16
Allow from	82.80.0.0/16
Allow from	82.81.0.0/16
Allow from	82.102.128.0/18
Allow from	82.166.0.0/16
Allow from	83.130.0.0/16
Allow from	83.143.8.0/21
Allow from	84.94.0.0/16
Allow from	84.95.0.0/16
Allow from	84.108.0.0/14
Allow from	84.111.0.0/20
Allow from	84.228.0.0/16
Allow from	84.229.0.0/16
Allow from	85.64.0.0/15
Allow from	85.65.0.0/16
Allow from	85.130.128.0/17
Allow from	85.159.160.0/21
Allow from	85.250.0.0/16
Allow from	87.68.0.0/14
Allow from	89.138.0.0/15
Allow from	89.139.0.0/16
Allow from	91.90.128.0/20
Allow from	91.135.96.0/20
Allow from	91.143.224.0/20
Allow from	91.193.4.0/22
Allow from	91.193.48.0/22
Allow from	91.194.4.0/23
Allow from	91.194.114.0/23
Allow from	91.195.162.0/23
Allow from	91.197.60.0/22
Allow from	91.197.100.0/22
Allow from	91.198.5.0/24
Allow from	91.198.70.0/24
Allow from	91.198.129.0/24
Allow from	91.198.205.0/24
Allow from	91.198.254.0/24
Allow from	91.199.29.0/24
Allow from	91.199.53.0/24
Allow from	91.199.69.0/24
Allow from	91.199.94.0/24
Allow from	91.199.99.0/24
Allow from	91.199.100.0/24
Allow from	91.199.119.0/24
Allow from	91.199.202.0/24
Allow from	91.199.215.0/24
Allow from	91.200.144.0/22
Allow from	91.202.168.0/22
Allow from	91.203.120.0/22
Allow from	91.205.152.0/22
Allow from	91.206.170.0/23
Allow from	91.207.34.0/23
Allow from	91.207.90.0/23
Allow from	91.207.206.0/23
Allow from	91.207.240.0/23
Allow from	91.208.86.0/24
Allow from	91.208.118.0/24
Allow from	91.208.129.0/24
Allow from	91.208.139.0/24
Allow from	91.208.140.0/24
Allow from	91.208.147.0/24
Allow from	91.208.218.0/24
Allow from	91.209.113.0/24
Allow from	91.209.182.0/24
Allow from	91.212.76.0/24
Allow from	91.212.114.0/24
Allow from	91.212.189.0/24
Allow from	91.213.152.0/24
Allow from	91.213.176.0/24
Allow from	91.214.100.0/22
Allow from	91.216.31.0/24
Allow from	91.216.210.0/24
Allow from	91.216.222.0/24
Allow from	91.216.252.0/24
Allow from	91.217.219.0/24
Allow from	91.220.9.0/24
Allow from	91.220.22.0/24
Allow from	91.220.30.0/24
Allow from	91.221.222.0/23
Allow from	91.223.11.0/24
Allow from	91.223.54.0/24
Allow from	91.223.106.0/24
Allow from	91.226.245.0/24
Allow from	91.227.70.0/23
Allow from	91.227.164.0/23
Allow from	91.228.126.0/23
Allow from	91.228.162.0/23
Allow from	91.228.248.0/24
Allow from	91.230.79.0/24
Allow from	91.230.236.0/24
Allow from	91.231.192.0/22
Allow from	91.235.107.0/24
Allow from	91.235.150.0/23
Allow from	92.61.224.0/20
Allow from	92.240.0.0/19
Allow from	93.94.40.0/21
Allow from	93.157.80.0/21
Allow from	93.172.0.0/15
Allow from	93.173.0.0/16
Allow from	93.175.32.0/19
Allow from	94.127.72.0/21
Allow from	94.159.128.0/17
Allow from	94.188.128.0/17
Allow from	94.230.80.0/20
Allow from	95.35.0.0/16
Allow from	95.86.64.0/18
Allow from	95.129.32.0/21
Allow from	95.142.16.0/20
Allow from	95.175.32.0/19
Allow from	95.215.128.0/22
Allow from	109.64.0.0/14
Allow from	109.95.128.0/21
Allow from	109.160.128.0/17
Allow from	109.186.0.0/16
Allow from	109.226.0.0/18
Allow from	109.234.16.0/21
Allow from	109.253.0.0/16
Allow from	128.139.0.0/16
Allow from	130.255.72.0/21
Allow from	132.64.0.0/16
Allow from	132.65.0.0/16
Allow from	132.66.0.0/16
Allow from	132.67.0.0/16
Allow from	132.68.0.0/16
Allow from	132.69.0.0/16
Allow from	132.70.0.0/16
Allow from	132.71.0.0/16
Allow from	132.72.0.0/16
Allow from	132.73.0.0/16
Allow from	132.74.0.0/16
Allow from	132.75.0.0/16
Allow from	132.76.0.0/16
Allow from	132.77.0.0/16
Allow from	132.78.0.0/16
Allow from	138.134.0.0/16
Allow from	141.226.0.0/16
Allow from	146.185.56.0/21
Allow from	147.161.0.0/16
Allow from	147.233.0.0/16
Allow from	147.234.0.0/16
Allow from	147.235.0.0/16
Allow from	147.236.0.0/16
Allow from	147.237.0.0/16
Allow from	149.49.0.0/16
Allow from	149.126.72.0/21
Allow from	159.253.248.0/21
Allow from	164.138.112.0/20
Allow from	176.12.128.0/17
Allow from	176.13.0.0/16
Allow from	176.106.224.0/21
Allow from	176.228.0.0/14
Allow from	176.241.112.0/21
Allow from	178.214.64.0/19
Allow from	178.215.208.0/20
Allow from	178.249.104.0/21
Allow from	188.64.96.0/21
Allow from	188.64.200.0/21
Allow from	188.120.128.0/19
Allow from	192.86.25.0/24
Allow from	192.86.89.0/24
Allow from	192.114.0.0/24
Allow from	192.114.1.0/24
Allow from	192.114.2.0/24
Allow from	192.114.3.0/24
Allow from	192.114.4.0/24
Allow from	192.114.5.0/24
Allow from	192.114.6.0/24
Allow from	192.114.7.0/24
Allow from	192.114.8.0/24
Allow from	192.114.9.0/24
Allow from	192.114.10.0/24
Allow from	192.114.11.0/24
Allow from	192.114.12.0/24
Allow from	192.114.13.0/24
Allow from	192.114.14.0/24
Allow from	192.114.15.0/24
Allow from	192.114.16.0/24
Allow from	192.114.17.0/24
Allow from	192.114.18.0/24
Allow from	192.114.19.0/24
Allow from	192.114.20.0/24
Allow from	192.114.21.0/24
Allow from	192.114.22.0/24
Allow from	192.114.23.0/24
Allow from	192.114.24.0/24
Allow from	192.114.25.0/24
Allow from	192.114.26.0/24
Allow from	192.114.27.0/24
Allow from	192.114.28.0/24
Allow from	192.114.29.0/24
Allow from	192.114.30.0/24
Allow from	192.114.31.0/24
Allow from	192.114.32.0/24
Allow from	192.114.33.0/24
Allow from	192.114.34.0/24
Allow from	192.114.35.0/24
Allow from	192.114.36.0/24
Allow from	192.114.37.0/24
Allow from	192.114.38.0/24
Allow from	192.114.39.0/24
Allow from	192.114.40.0/24
Allow from	192.114.41.0/24
Allow from	192.114.42.0/24
Allow from	192.114.43.0/24
Allow from	192.114.44.0/24
Allow from	192.114.45.0/24
Allow from	192.114.46.0/24
Allow from	192.114.47.0/24
Allow from	192.114.48.0/24
Allow from	192.114.49.0/24
Allow from	192.114.50.0/24
Allow from	192.114.51.0/24
Allow from	192.114.52.0/24
Allow from	192.114.53.0/24
Allow from	192.114.54.0/24
Allow from	192.114.55.0/24
Allow from	192.114.56.0/24
Allow from	192.114.57.0/24
Allow from	192.114.58.0/24
Allow from	192.114.59.0/24
Allow from	192.114.60.0/24
Allow from	192.114.61.0/24
Allow from	192.114.62.0/24
Allow from	192.114.63.0/24
Allow from	192.114.64.0/24
Allow from	192.114.65.0/24
Allow from	192.114.66.0/24
Allow from	192.114.67.0/24
Allow from	192.114.68.0/24
Allow from	192.114.69.0/24
Allow from	192.114.70.0/24
Allow from	192.114.71.0/24
Allow from	192.114.72.0/24
Allow from	192.114.73.0/24
Allow from	192.114.74.0/24
Allow from	192.114.75.0/24
Allow from	192.114.76.0/24
Allow from	192.114.77.0/24
Allow from	192.114.78.0/24
Allow from	192.114.79.0/24
Allow from	192.114.80.0/24
Allow from	192.114.81.0/24
Allow from	192.114.82.0/24
Allow from	192.114.83.0/24
Allow from	192.114.84.0/22
Allow from	192.114.88.0/21
Allow from	192.114.96.0/20
Allow from	192.114.112.0/21
Allow from	192.114.120.0/22
Allow from	192.114.124.0/22
Allow from	192.114.128.0/20
Allow from	192.114.144.0/24
Allow from	192.114.145.0/24
Allow from	192.114.146.0/23
Allow from	192.114.148.0/22
Allow from	192.114.152.0/24
Allow from	192.114.153.0/24
Allow from	192.114.154.0/24
Allow from	192.114.155.0/24
Allow from	192.114.156.0/24
Allow from	192.114.157.0/24
Allow from	192.114.158.0/24
Allow from	192.114.159.0/24
Allow from	192.114.160.0/19
Allow from	192.114.192.0/18
Allow from	192.115.0.0/16
Allow from	192.116.0.0/17
Allow from	192.116.128.0/18
Allow from	192.116.192.0/18
Allow from	192.117.0.0/17
Allow from	192.117.128.0/18
Allow from	192.117.192.0/18
Allow from	192.118.0.0/16
Allow from	192.132.244.0/24
Allow from	192.133.36.0/24
Allow from	192.160.252.0/24
Allow from	192.189.70.0/24
Allow from	192.206.86.0/24
Allow from	192.206.222.0/24
Allow from	192.206.223.0/24
Allow from	192.206.224.0/24
Allow from	192.206.225.0/24
Allow from	192.206.226.0/24
Allow from	193.16.147.0/24
Allow from	193.16.238.0/24
Allow from	193.17.42.0/24
Allow from	193.17.68.0/24
Allow from	193.17.74.0/24
Allow from	193.22.80.0/24
Allow from	193.27.92.0/23
Allow from	193.28.155.0/24
Allow from	193.30.161.0/24
Allow from	193.33.16.0/23
Allow from	193.33.234.0/23
Allow from	193.34.56.0/22
Allow from	193.36.176.0/24
Allow from	 193.37.128.0/23
Allow from	193.37.130.0/24
Allow from	193.39.79.0/24
Allow from	193.41.202.0/24
Allow from	193.41.208.0/23
Allow from	193.43.244.0/22
Allow from	193.46.64.0/24
Allow from	193.47.165.0/24
Allow from	193.47.248.0/24
Allow from	193.93.96.0/22
Allow from	193.104.44.0/24
Allow from	193.104.62.0/24
Allow from	193.104.77.0/24
Allow from	193.104.115.0/24
Allow from	193.104.117.0/24
Allow from	193.104.119.0/24
Allow from	193.104.147.0/24
Allow from	193.105.99.0/24
Allow from	193.105.199.0/24
Allow from	193.105.203.0/24
Allow from	193.106.52.0/22
Allow from	193.106.204.0/22
Allow from	193.108.195.0/24
Allow from	193.108.211.0/24
Allow from	193.109.78.0/23
Allow from	193.109.82.0/24
Allow from	193.110.2.0/23
Allow from	193.138.92.0/24
Allow from	193.142.151.0/24
Allow from	193.150.127.0/24
Allow from	193.160.33.0/24
Allow from	193.169.70.0/23
Allow from	193.169.88.0/23
Allow from	193.169.104.0/23
Allow from	193.169.246.0/23
Allow from	193.178.218.0/24
Allow from	193.178.220.0/24
Allow from	193.186.2.0/24
Allow from	193.186.163.0/24
Allow from	193.200.30.0/24
Allow from	193.200.154.0/24
Allow from	193.201.155.128/25
Allow from	193.218.207.128/25
Allow from	193.222.129.0/24
Allow from	193.238.28.0/22
Allow from	193.238.188.0/22
Allow from	193.238.208.0/22
Allow from	193.239.108.0/22
Allow from	193.243.183.128/26
Allow from	193.254.206.0/23
Allow from	194.1.145.0/24
Allow from	194.8.76.0/23
Allow from	194.8.88.0/23
Allow from	194.11.19.0/24
Allow from	194.29.32.0/20
Allow from	194.31.58.0/24
Allow from	194.50.71.0/24
Allow from	194.50.175.0/24
Allow from	194.54.168.0/22
Allow from	194.56.215.0/24
Allow from	194.88.136.0/23
Allow from	194.90.0.0/19
Allow from	194.90.32.0/19
Allow from	194.90.64.0/18
Allow from	194.90.128.0/17
Allow from	194.110.249.0/24
Allow from	194.114.146.0/23
Allow from	194.116.226.0/23
Allow from	194.116.230.0/23
Allow from	194.150.218.0/23
Allow from	194.153.101.0/24
Allow from	194.177.16.0/22
Allow from	194.187.84.0/22
Allow from	194.213.4.0/24
Allow from	194.213.108.0/23
Allow from	194.242.24.0/23
Allow from	194.247.166.0/23
Allow from	195.2.250.0/23
Allow from	195.10.194.0/24
Allow from	195.10.220.0/24
Allow from	195.10.222.0/24
Allow from	195.18.8.0/22
Allow from	195.22.148.0/23
Allow from	195.28.166.0/23
Allow from	195.28.180.0/23
Allow from	195.35.85.0/24
Allow from	195.47.252.0/24
Allow from	195.60.176.0/23
Allow from	195.60.232.0/22
Allow from	195.62.18.0/23
Allow from	195.62.30.0/23
Allow from	195.66.118.0/24
Allow from	195.72.116.0/22
Allow from	195.72.120.0/21
Allow from	195.78.120.0/23
Allow from	195.82.128.0/23
Allow from	195.85.254.0/24
Allow from	195.88.234.0/23
Allow from	195.93.234.0/23
Allow from	195.95.183.0/24
Allow from	195.110.40.0/23
Allow from	195.128.145.0/24
Allow from	195.128.176.0/23
Allow from	195.137.164.0/24
Allow from	195.160.240.0/22
Allow from	195.162.66.0/23
Allow from	195.177.108.0/22
Allow from	195.182.33.0/24
Allow from	195.189.140.0/23
Allow from	195.189.192.0/23
Allow from	195.190.19.0/24
Allow from	195.190.23.0/24
Allow from	195.191.52.0/23
Allow from	195.200.92.0/23
Allow from	195.200.205.0/24
Allow from	195.200.238.0/23
Allow from	195.211.68.0/22
Allow from	195.216.252.0/24
Allow from	195.225.46.0/23
Allow from	195.225.62.0/23
Allow from	195.234.26.0/23
Allow from	195.242.118.0/23
Allow from	195.242.174.0/24
Allow from	195.244.22.0/23
Allow from	195.245.108.0/23
Allow from	195.250.33.0/24
Allow from	199.203.0.0/16
Allow from	204.52.208.0/24
Allow from	212.25.64.0/19
Allow from	212.25.96.0/19
Allow from	212.29.192.0/19
Allow from	212.29.224.0/19
Allow from	212.48.64.0/19
Allow from	212.68.128.0/19
Allow from	212.76.96.0/19
Allow from	212.116.160.0/19
Allow from	212.117.128.0/19
Allow from	212.143.0.0/16
Allow from	212.150.0.0/16
Allow from	212.179.0.0/17
Allow from	212.179.128.0/17
Allow from	212.199.0.0/16
Allow from	212.199.128.0/17
Allow from	212.235.0.0/17
Allow from	213.8.0.0/16
Allow from	213.57.0.0/16
Allow from	213.137.64.0/19
Allow from	213.151.32.0/19
Allow from	213.173.32.0/19
Allow from	217.21.64.0/20
Allow from	217.21.80.0/20
Allow from	217.22.112.0/20
Allow from	217.65.32.0/20
Allow from	217.132.0.0/16
Allow from	217.194.192.0/20
</Files>

נעילת wp-config.php

הוסיפו את השורות הבאות בתוך הקובץ wp-config.php הכי למעלה, כדי למנוע עדכון קובץ מבחוץ:

# Put it on TOP
<files wp-config.php>
order allow,deny
deny from all
</files>

נעילת קבצי ליבה של וורדפרס

הוסיפו את השורות הבאות בתוך הקובץ wp-config.php בחלק התחתון מייד לפני שורה  # BEGIN WordPress

# Block the include-only files.
RewriteEngine On
RewriteBase /
RewriteRule ^wp-admin/includes/ - [F,L]
RewriteRule !^wp-includes/ - [S=3]
RewriteRule ^wp-includes/[^/]+\.php$ - [F,L]
RewriteRule ^wp-includes/js/tinymce/langs/.+\.php - [F,L]
RewriteRule ^wp-includes/theme-compat/ - [F,L]

מניעת הפעלה קבצי PHP מתוך סיפריית uploads

1. צרו קובץ htaccess. בספרייה wp-content/uploads
2. הוסיפו את שורות הקוד הבאות:

# disable php in directory
RemoveType .php

תגובות סגורות.

  • חדשות אחרונות

  • המלצות

    For check use: $curl -I -H "Accept-Encoding: gzip" dev.newsnow.co.il/about.html Put next code to .htacces file AddOutputFilterByType DEFLATE text/plain AddOutputFilterByType DEFLATE text/html AddOutputFilterByType DEFLATE text/xml AddOutputFilterByType DEFLATE ...

    Check gzip is active on apache server

    בקובץ wp-includes/Requests/Transport/cURL.php שנה שורה מס' 527 if (!function_exists('curl_init') && !function_exists('curl_exec')) { ל- if (!function_exists('curl_init') || !function_exists('curl_exec')) {

    Warning: curl_exec() has been disabled for security reasons in /wp-includes/Requests/Transport/cURL.php on line 162

    פיתחנו מערכת אבטחת ניהול אתרי וורדפרס. מערכת ניהול של אתר וורדפרס פתוחה לכניסה רק לפי כתובת IP מורשת. כדי להכניס את כתובת ...

    אבטחת אתרי וורדפרס

    אל תשתמשו בשם המשתמש Admin אם אתם משתמשים בשם משתמש admin אז אתם טועים! בצעו את השינויים הדרושים ב-MySQL: UPDATE wp_users SET user_login='newuser' ...

    אבטחת וורדפרס

HostingIL טופס הרשמה

Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur excepteur sint occaecat cupidatat non

HostingILטופס התחברות