WordPress 8G Firewall

提升网站的安全性是WordPress建站最重要的内容之一，目前的方案也是非常多，大体上也就几类，一是通过插件等对WordPress 网站的防护，二是托管的服务器层面的防护，三是Web服务器反代，四是CDN层面的防护。

8G Firewall是一个轻量化的防火墙规则，直接编辑.htaccess文件，将防火墙规则添加到这个文件即可完成防火墙的配置，简单高效占用低，由于是介于服务器和WordPress网站之间的一个安全过滤器，防护效果是超过普通插件的效果的。

8G Firewall | Perishable Press

After more than a year of beta testing, 8G Firewall is ready for use on production sites. So you can benefit from the powerful protection provided by the…

perishablepress.com

官方介绍

The 8G Firewall is a carefully crafted set of security rules for Apache and Nginx servers. It can be applied via your site’s public root .htaccess file, or added via server configuration. Once added, 8G provides powerful server-level protection against a wide range of malicious requests, bad bots, automated attacks, spam, and many other types of threats and nonsense. It’s a lightweight (only 17KB) strong firewall that improves site security and peace of mind.

核心功能

1. Robust Defense:  强大防御：
   • Say goodbye to malicious requests, bad bots, and automated attacks.
     告别恶意请求、坏机器人及自动化攻击。
   • The 8G Firewall stands guard, preventing unauthorized access and suspicious activities.
     8G 防火墙严阵以待，防止未经授权的访问和可疑活动。
2. Rewrite Rules Magic:  重写规则魔法：
   • Unlike traditional firewalls, the 8G Firewall operates through server rewrite rules.
     与传统的防火墙不同，8G 防火墙通过服务器重写规则运行。
   • No file or directory changes—your SEO and loading speed remain untouched.
     无需更改文件或目录——您的 SEO 和加载速度保持不变。
3. Compatibility and Performance:
   兼容性与性能：
   • Worried about clashes with existing security plugins? Fear not!
     担心与现有安全插件冲突？不必担心！
   • The 8G Firewall plays nice with plugins like Wordfence, iThemes Security, and Sucuri.
     8G Firewall 与 Wordfence、iThemes Security 和 Sucuri 等插件兼容良好。
4. Vulnerability Concealment:
   漏洞隐藏：
   • By blocking common WordPress attacks (think wp-admin, wp-login.php, and wp-content), the 8G Firewall throws hackers off their game.
     通过阻止常见的 WordPress 攻击（如 wp-admin、wp-login.php 和 wp-content），8G 防火墙让黑客无从下手。
   • Themes, plugins, and core files? Stealth mode activated!
     主题、插件和核心文件？已启动隐身模式！

The New 8G Firewall Protection Is Here – Hide My WP Ghost

Hide My WP Ghost has just introduced its latest game-changer layer of security: the 8G Firewall. Buckle up as we delve into what this feature brings to the table and how it can revolutionize your WordPress site’s security. What Is the 8G Firewall?Key Features of the 8G Firewall:How to Activate the 8G

hidemywpghost.com

实现方法

官网下载8G Firewall规则，是一个txt文件，将内容复制粘贴至.htaccess文件顶部即可。

8G Firewall | Perishable Press

验证

7G Firewall | Applications | OpenLiteSpeed Documentation | OpenLiteSpeed Documentation

How to install and verify 7G Firewall with OpenLiteSpeed

docs.openlitespeed.org

参考Openlitespeed的文档，可以使用如下方法进行验证。

Visit ?fullclick or 0day.php on your domain (for example, https://example.com/?fullclick). The server should return a 403 Permission Denied error.

参考

Enhancing WordPress Security with 8G Firewall Rules

WP Security Ninja uses the advanced 8G Firewall rules to protect your WordPress site from various threats. Learn the differences from the 7G rules and how to customize them for your specific needs.

wpsecurityninja.com

故障排除

如果发现网页无法访问，那么把8G的代码删掉就可以了，如果后台都打不开，那么把.htaccess删了，再排查原因。