{"id":19620996,"url":"https://github.com/tinaponting/protect-wordpress","last_synced_at":"2025-04-28T03:32:10.894Z","repository":{"id":44333199,"uuid":"507274866","full_name":"tinaponting/protect-wordpress","owner":"tinaponting","description":"Protect wordpress with .htacess for paranoid bloggers","archived":false,"fork":false,"pushed_at":"2025-04-20T13:51:33.000Z","size":7685,"stargazers_count":8,"open_issues_count":0,"forks_count":2,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-04-20T14:42:44.808Z","etag":null,"topics":["cybersecurity","htaccess","htaccess-security","htaccess-snippets","protect","security","skydda-wordpress","speed","web-security","wordpress","wordpress-security"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/tinaponting.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2022-06-25T10:01:45.000Z","updated_at":"2025-04-20T13:51:36.000Z","dependencies_parsed_at":"2024-05-21T06:49:20.983Z","dependency_job_id":"2120539f-62d1-4e00-beec-a2606881d19f","html_url":"https://github.com/tinaponting/protect-wordpress","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tinaponting%2Fprotect-wordpress","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tinaponting%2Fprotect-wordpress/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tinaponting%2Fprotect-wordpress/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tinaponting%2Fprotect-wordpress/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/tinaponting","download_url":"https://codeload.github.com/tinaponting/protect-wordpress/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":251246193,"owners_count":21558760,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cybersecurity","htaccess","htaccess-security","htaccess-snippets","protect","security","skydda-wordpress","speed","web-security","wordpress","wordpress-security"],"created_at":"2024-11-11T11:20:54.273Z","updated_at":"2025-04-28T03:32:10.887Z","avatar_url":"https://github.com/tinaponting.png","language":null,"readme":"#### protect-wordpress  For Paranoid bloggers on wordpress.\nProtect wordpress with .htaccess\n* AI ROBOTS/SCRAPERS:  https://github.com/tinaponting/ai-robots-scrapers\n\n* No one of these htaccess 1 or 2 makes any diffrent in speed! *\nFor us who are paranoid bloggers or use it as CMS, we want to sleep with peace! use these .htacces and adwises and you will be safe! \n\nAbout me: A blogger since 2002, been on blogspot as on wordpress, made all mistakes through the years, I learned not only a free firewall can protect med, so I made my own, follow the latest trends in hacking and some blogs on to get it in order:)  \nI gone throught everything  i could find in google, gibhub and forums for all .htacces security, some things didn´t work, some did works! Some old htacces tricks that still works.  Use it free but come back time to time to check latest updates.  Love //KP Karlshamn sweden\n\n* If you want something on the maybe text; downloads add it with, noteplus + or what you use:)\n* works best with Apache, 5.0 + Wordpress, 6,7+\n\n* You can use both htaccess and Perrish Press firewall at the same time with no impact on speed! Name PR to htaccess2 and it is ready to protect.\nWORDPRESS - FORT KNOX:)\n\n\nWp.config.php file:  //Se also my core - single user or wp addon on here:)\n\nrequire_once(ABSPATH.'wp-settings.php');  \nAdd this after this:\n* define('WP_DEBUG',false);\n\ndefine('DISALLOW_FILE_EDIT',true); \ndefine('DISALLOW_FILE_MODS',true);\ndefine('DISABLE_WP_CRON',true);\nob_start();?\u003e\n\nSet to: 444 in wp.config.php Also gets some speed!  //important!!\n\n* Protect: wp.contents folder, plugins,themes and uploads.\n* Protect: wp-admin folder.\n\nCore .htaccess for protection and speed.  Set: 444 files rights or of it possible: 440\n\n* Example 220906 : Robots.txt - even if the wp sets up robots.txt, it is not enough! To cover all boots and if you hate: semrush, ahrefs, add more id you don not want!\n\n* (220922) BBQ Custom code: Protects your blog:) If bought BBQ!\n* If you got trouble or don´t like folks looking inside your plugins root, this works, set the htaccess in plugins Example: Wpschema root, set 444 .-done!\n\n**** IF You use. perrrishpress 8G Firewall, name it: .htacces2 if use it with my other .htacess in root.\n\nPlugins I recommend:\n* disable wp rest-api:  // So they cannot se who is the user: https://wordpress.org/plugins/disable-wp-rest-api/\n\nNone above takes power fron your blog:)\n\nPAYED Firewall: \n* BBQ Pro   // I love the custom - place in protection for strange files!   https://plugin-planet.com/bbq-pro/\n\n* BLOCK BAD BOTS  - Blackhole Pro   Works very well:) same adress as above:)\n\n* 404 controls: - so GOOD /Payed version best:): https://www.cminds.com/wordpress-plugins-library/404-console-plugin-wordpress/\n\n*  Login IP  country restriction:  login-ip-country-restriction Payed:https://iuliacazan.ro/login-ip-country-restriction/\nFree version: https://wordpress.org/plugins/login-ip-country-restriction/  * Both versions Works very well:) \n\n* Protect of your JS files: https://domainlockjs.com/     works very well:)  // If your under attack, otherwise not needed!\n\n* Simple Login Captcha:  https://wordpress.org/plugins/simple-login-captcha/    Really godd against Autobots, does not take poer from your blog.\n\n* None above takes power from your blog!\n\nIf you got google / bing XML files, set them t0 444 0r if it works: 440:) for safety\nSet you robots.txt to 444. Do not use: humans.txt, it mostly slow down your blog, ads.txt? Set to 444 or 440.\nBlogs I Love:\n* Perishable Press: https://perishablepress.com/   Always something new to read about security.\n* Wphacked blog:  https://secure.wphackedhelp.com/blog/\n\n* Strong password generator: https://www.f-secure.com/en/home/free-tools/password-generator   // Choose Password length: 32 and after that use some greek, some russian, some norwegian,swedich,Deuch words here and there = Very hard to break!\nHappy safe blogging folks:)\n\n* Block IP by country:  https://www.ip2location.com/free/visitor-blocker   //very good if you got to mutch of for example: Hongkong!\n\n* Sitemap Validater: https://www.xml-sitemaps.com/validate-xml-sitemap.html\n\n*  Information about IP adresses:  https://threatbook.io\n*  OR https://www.abuseipdb.com/   Abuse IP\n\n* Remove not used files:\nreadme.html\nlicense.txt\nchangelog.txt\nAll files .md\n\nDo you need?: wlwmanifest.xml /  /wp-includes\n\n+ wp-config-sample.php\n\nWp-admin:\n/wp-admin/install.php\n\n*****VERY IMPORTANT:\nVery important; If you got an older blog!\nOn:\nWP-CONFIG.PHP\ndefine('DB_CHARSET','utf8mb4');  //works well in sweden, somehoq:)\n\n******Change it to: \ndefine('DB_CHARSET','utf8');\n\n*' To protect: wp-includes/js and css from curious! eyes and hackers, take wp-content: index.php and put it there!\n\n**# If you want to annoy scrapers, ai scrapers and other annoying.\nUse both or one of these:\n\nhttps://wordpress.org/plugins/wp-browser-update/\nhttp://browserupdate.org/\n\nhttps://wordpress.org/plugins/real-cookie-banner/\n\nAI SCRAPERS HERE: https://github.com/tinaponting/ai-robots-scrapers\n\n* * IF YOU WANT to change something: use: Notepad ++ -to your taste:)\n\n\nLove ///  Kristina Sweden  :  \n\n***UPDATED FILES AND FOLDERS: *******\n\n* Updated: 250427 htaccess1 - Better security:)\n* Updated: 250425 htaccess -core htaccess\n* Updated: 250420 htaccess1 + perishablepress.com8g-firewall + Latest Ai\n* Updated: 250418 htaccess1 + perishablepress.com8g-firewall + Latest Ai, perishpress List protection.\n* Updated: 250417 htaccess1 + perishablepress.com8g-firewall + my htaccess2 AI blocked! - updated and gone through and checked with datadome list:)\n* Updated: 250415 htaccess1  - updated:)\n* Updated: 250414 htaccess1  - updated and gone through:)\n* Updated: 250412 -perishablepress.com8g-firewall + my htaccess2 AI blocked!\n* Updated: 250412 - Updated, wp.contet protection.\n* Updated: 250402 perishablepress.com8g-firewall + my htaccess2 AI updated:)\n* Updated: 250402 perishablepress.com8g-firewall + my htaccess2 +  gone Througt all Updated:)\n* Added: 250401 - LIST OF common browseers used/hackers, Tzt stealers.txt\n* Updated: 250329 perishablepress.com8g-firewall + my htaccess2 +  gone Througt all Ai- uppdated!\n* Updated: 250329 perishablepress.com8g-firewall + my htaccess2 +  Delated GE\n* Updated: 250323 perishablepress.com8g-firewall + my htaccess2 +  new  AI\n* Updated: 250319 htaccess  - updated\n* Updated: 25019 htaccess1 -updated =  security:: Delated, wp.user/json - do not work:(\n* Updated: 250313 perishablepress.com8g-firewall + my htaccess2+  A new AI\n* Updated: 250309 perishablepress.com8g-firewall + my htaccess2+  A new AI\n* Updated: 250308 perishablepress.com8g-firewall + my htaccess2+  A new AI\n* Updated: 250307 perishablepress.com8g-firewall + my htaccess2+ new AI\n* Updated: 250306 perishablepress.com8g-firewall + my htaccess2+ new AI\n* Updated: 250304 htaccess1 -updated = More security:) \n* Updated: 250225 perishablepress.com8g-firewall Latest Ai someAdjustment in firewall:)\n* Updated: 250218 perishablepress.com8g-firewall Updated:)\n* Updated: 250218 htaccess1 -works well, checked with lynx:) \n* Updated: 250213 Updated, wp-includes folder protection.\n* Updated: 250210 perishablepress.com8g-firewall Updated my own with Ai.\n* Updated: 250207 htaccess1 -all:) delated some doubles:)\n* Updated: 250206 perishablepress.com8g-firewall Updated, with Old browsers not wanted:)\n* Updated: 250128 perishablepress.com8g-firewall Updated, used by me + Ai block, all updated with new 8G firewall.\n* Updated: 250127 htaccess -with more alternatives for speed.\n* Updated: 250124 perishablepress.com8g-firewall Updated, used by me + Ai block\n* Updated: 250119 htaccess1 -all:) \n* Updated: 250123 perishablepress.com8g-firewall + new Ai not wanted!\n* Updated: 250119 htaccess1 - my own, i use!\n* Updated: 250115 perishablepress.com8g-firewall + new Ai not wanted!\n* Updated: 250117 maybe.txt\n* Updated: 250114 Updated wp-admin\n* Updated: 250113 htaccess1\n* Updated: 250113 perishablepress.com8g-firewall + new Ai not wanted!\n* Updated: 25009 updated: htaccess1 - one error!:(\n* Updated: Noway allowed-Do not see\n* Updated: 25006 updated: w-includes, but still have smeissues with admin, working on  it:)  But works.\n* Updated: 25006 updated: htaccess1, delated som code not needed year 25:)\n* Updated: 250101 qp-includes protect to the new folders and so on  \n* Updated: 240102 - 2411225 \n* Updated: 230306 - 231220\n* Updated: 230206 - 230505. \n* Updated: 230202 - 230101.\n* Updated: 221225 - 221230.\n* Updated: 221225 - 221124.\n* Updated: 220915 - 221124.\n* Updated: 200220 - 2021.\n\nVERY IMPORTANT: Core  .htaccess + .htaccess1 for speed and protection  Set: 444 files rights\nin core. No one can write to any files!!\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftinaponting%2Fprotect-wordpress","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftinaponting%2Fprotect-wordpress","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftinaponting%2Fprotect-wordpress/lists"}