Blocking wp-login.php brute forcing
This guide will tell you how to setup a custom fail2ban filter and jail to watch the Apache access log and ban malicious attackers who brute for wp-login.php.
Install fail2ban using apt
# apt install fail2ban
Nuno Morais Sarmento nfsarmento
View feature-post-query.php
| <div class="posts-listings"> | |
| <?php | |
| $args = array( | |
| 'posts_per_page' => '1', | |
| 'orderby' => 'featured-checkbox', | |
| 'order' => 'ASC', | |
| 'meta_query' => array( | |
| array( |
nfsarmento
/ yz-send-bp-welcome-msg.php
Created Mar 31, 2021
— forked from KaineLabs/yz-send-bp-welcome-msg.php
Send Buddypress Welcome Message !
View yz-send-bp-welcome-msg.php
| <?php | |
| //send a welcome email when a user account is activated | |
| add_action( 'bp_core_activated_user', 'yz_welcome_user_notification', 10, 3 ); | |
| function yz_welcome_user_notification( $user_id, $key = false, $user = false ) { | |
| if ( is_multisite() ) { | |
| return ;// we don't need it for multisite | |
| } | |
| //send the welcome mail to user |
nfsarmento
/ fail2ban-wordpress.md
Last active Dec 29, 2020
Wordpress Fail2Ban Filter (Debian/Ubuntu Apache2)
View fail2ban-wordpress.md
nfsarmento
/ functions.php
Created Dec 15, 2020
WordPress Allows contributors to see and manage only their custom post types and drafts from the manage posts screen.
View functions.php
| /* | |
| * | |
| * Allows contributors to see and manage only their custom post types and drafts from the manage posts screen. | |
| * src: https://wordpress.stackexchange.com/questions/89233/restrict-contributors-to-view-only-their-own-custom-post-types | |
| * | |
| */ | |
| add_action( 'pre_get_posts', 'aet_filter_cpt_listing_by_author' ); | |
| function aet_filter_cpt_listing_by_author( $wp_query_obj ){ | |
| // Front end, do nothing | |
| if( !is_admin() ) |
View functions.php
| add_filter( 'wp_nav_menu_objects', 'ns_add_menu_parent_class' ); | |
| function ns_add_menu_parent_class( $items ) { | |
| $parents = array(); | |
| foreach ( $items as $item ) { | |
| //Check if the item is a parent item | |
| if ( $item->menu_item_parent && $item->menu_item_parent > 0 ) { | |
| $parents[] = $item->menu_item_parent; | |
| } | |
| } |
View functions.php
| /* | |
| * Menu | |
| * add class to <a> on WP menu | |
| */ | |
| function ns_menu_add_class( $atts, $item, $args ) { | |
| if($args->theme_location == 'topics') { | |
| $class = 'term--single with-image'; // or something based on $item | |
| $atts['class'] = $class; | |
| } |
nfsarmento
/ Related posts
Created Jul 31, 2020
nfsarmento
/ wg_install.sh
Created Jul 16, 2020
— forked from Anachron/wg_install.sh
A script to spin up a Wireguard VPN server with Unbound recursive DNS in a hurry
View wg_install.sh
| #!/bin/bash | |
| # This file is designed to spin up a Wireguard VPN quickly and easily, | |
| # including configuring a recursive local DNS server using Unbound | |
| # | |
| # Make sure to change the public/private keys before running the script | |
| # Also change the IPs, IP ranges, and listening port if desired | |
| # iptables-persistent currently requires user input | |
| # add wireguard repo | |
| sudo add-apt-repository ppa:wireguard/wireguard -y |
View functions.php
| <?php | |
| if ( is_singular('YOUR_CUSTOM_POST_TYPE') ) { | |
| $terms = get_the_terms($post->ID, 'custom_categories'); | |
| foreach ($terms as $term) { | |
| $term_link = get_term_link($term, 'custom_categories'); | |
| if (is_wp_error($term_link)) | |
| continue; | |
| echo '<a href="' . $term_link . '">' . $term->name . '</a>, '; | |
| } |
View .htaccess
| ## Use the code below only if you had enable .htaccess - "AllowOverride All" | |
| ## You may need to enable mod_headers on apache - "a2enmod headers" | |
| ## The code below goes under the rules that you should have if you are using WordPress | |
| #BEGIN https code | |
| RewriteEngine On | |
| RewriteCond %{HTTPS} off | |
| RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L] | |
| #BEGIN Block bad hackers |
NewerOlder