Опис
Prevent unwanted traffic incidents that might result in site outages and billing overages. WordPress plugin that blocks IP and bots categorized as harmful, resulting in heavy server loads from frequently crawled pages, or utilized in vulnerability/security breach scans.
Usage instructions for Integrating AbuseIPDb
- Obtain your free API key from AbuseIPDB ().
- Install and activate the plugin via your WordPress dashboard.
- Configure the plugin settings by adding your API key and setting threat thresholds.
Firewall
- Manually add an IP to be blocked
- Manually add Bots/User-Agents/Scrappers to prevent site visit
- Manually add an IP to be whitelisted on the login page
- Automatically block malicious traffic thru analysis on an hourly basis
- Automatically block excessive login attempts with configurable threshold
- Automatically block excessive visits from an incremented query that would bust the CDN cache
WP-CLI commands
Example
wp jam block 127.0.0.10
wp jam unblock 127.0.0.10
wp jam topip
Pantheon.io
Prevent traffic overages due to excessive visits from malicious traffic. The plugin can be used on sites hosted on Pantheon.io and no additional symlinks required.
Pantheon terminus command
terminus wp sitename.env -- jam block 127.0.0.1
terminus wp sitename.env -- jam unblock 127.0.0.1
Скріншоти
Встановлення
- Download the plugin via WordPress.org page
- Upload the compress archive through the ‘Plugins > Add New > Upload’ screen in your WordPress dashbboard
- Activate the plugin through the ‘Plugins’ menu in WordPress
Відгуки
27.03.2025
Simple and basic plugin to automatize the control of abusive access to your WordPress.
Simple because isn’t modifying your Wordpress too much, adding hundred of not needed functions or forwarding your data and control to cloud services outside your domain.
Basic because do just what you need to control the access to your Wordpress.
If you are tired of check your apache/nginx access log, check the abusive IPs activity on AbuseIPDB and block the access to them throw your .htaccess. This plugin does it automatically for you. Just get your API Key (on AbuseIPDB), setup the confidence of abuse threshold from AbuseIPDB and the plugin will check the IPs and add to the IP block list automatically.
Also the support from the plugin author is fast and resolutive.
And the best… it’s free. No limited functions or premium versions.
The only thing missing is the ability to control the access by hostname, to be the perfect tool.
Учасники та розробники
“Traffic Jammer” — проект з відкритим вихідним кодом. В розвиток плагіну внесли свій вклад наступні учасники:
Учасники
Перекладіть “Traffic Jammer” на вашу мову.
Цікавитесь розробкою?
Перегляньте код, перегляньте сховище SVN або підпишіться на журнал розробки за допомогою RSS.
Журнал змін
= 1.4.91=
* tested working on 6.8.3
* fix php errors
1.4.9
- disallow network activation on a multisite
1.4.8
- fix php error during plugin deactivation
1.4.7
- fix bug on the report
1.4.4
- option to disable limit failed login
- show abuse score on the reports if Abusedb API is present
1.4.3
- version bump, tested for WordPress version 6.7.2
1.4.0
- added threshold 50 and 60 options
- tested working with 6.5.3
1.3.3
- revised readme.txt
- tested working on 6.5
1.3.0
- cleanup code
1.2.6
- readme and tags formatting
1.2.5
- Tested to work with version 6.4.3
1.2.4
- Tested to work with version 6.4.1
1.2.3
- Tested to work WordPress version 6.3.2
1.2.2
- Tested to work WordPress version 6.3.1
1.2.1
- fixed PHP warnings when running cli commands
- added for the commands topip
1.1.2
- fixed deprecated warnings
1.1.1
- prevent selection or entering 0 to the login threshold that would result in lockout
1.1.0
- added 5 days in the selection of retention period of logs
1.0.10
- fix bug on detecting real IP when domain is using Cloudflare proxy
1.0.9
- fix bug on updating abuseipdb key and options
- added checking of error when calling abuseipdb endpoint
1.0.8
- Settings for AbuseIPDB has a separate tab
- Added threshold field for minimal abuse score
1.0.7
- added AbuseIPDB feature to block malicious traffic
1.0.6
- added feature to automatically block IPs which have failed login
- option to limit the number of retries of failed login before it would be blocked
1.0.5
- added blocking for cache busting URL query strings
1.0.4
- added schedule event for log trimming
- added setting for log retention
1.0.3
- added database version log for future updates
1.0.2
- added reports page
1.0.1
- tabbed content
- show current IP
- simple instructions
1.0.0
- 2022-10-07
- Stable release approved by WordPress.org