sMyles Plugins

gistfile1.txt

SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyLimitAction ProcessPartial
SecResponseBodyMimeType text/xml

<FilesMatch "xmlrpc.php">
    # Block brute force attempts using xmlrpc.php as the vector
    # Increment our counter when the xmlrpc API indicates a failure
    SecRule REQUEST_BODY "wp.getUsersBlogs" "id:13504,deny,chain,status:406,
        phase:4,t:none,t:urlDecode,chain,deny,
        msg:'xmlrpc.php call failures triggered temporary block'"
    SecRule RESOURCE:xmlrpc_bf_block "@gt 0"

    SecRule RESPONSE_BODY "faultString" "id:13505,nolog,
        phase:4,t:none,t:urlDecode,
        setvar:RESOURCE.xmlrpc_bf_counter=+1,
        deprecatevar:RESOURCE.xmlrpc_bf_counter=1/300"

    SecRule RESOURCE:xmlrpc_bf_counter "@gt 2" "id:13506,nolog,
        setvar:RESOURCE.xmlrpc_bf_block=1,
        expirevar:RESOURCE.xmlrpc_bf_block=900,
        setvar:RESOURCE.xmlrpc_bf_counter=0"
</FilesMatch>

No comments yet.

What others are saying

I have found the plugins to be very useful but more impressively is the customer service that I have received, Smyles went above and beyond and made sure I was not just satisfied but happy with the end outcome. I would certainly buy again and I would recommend Smyles 100% - trustworthy and extremely helpful!

Adam Finkel-Gates

I'm really happy with the WP Job Manager Field Editor plugin! I'm not a developer, and the truth is that thanks to this kind of applications you can get yourself out of the rut you sometimes get into because you don't know how to program. The plugin does exactly what it says, maybe with a not very easy learning curve, but in a couple of hours you are modifying the fields you need. So, I can only congratulate the creator and encourage him to keep improving the plugin. Maybe I should improve the user interface so that the experience when setting it up is more rewarding.

Fernando Mariano CEO of Netfreelance https://www.netfreelance.es

I have found the WP Job Manager Field Editor quite useful for customising my site. Don't have to worry about any php code and I can focus on designing a great product!