Title: BPS Pro version ?
Last modified: August 31, 2016
---
# BPS Pro version ?
* Resolved [onirgoc](https://wordpress.org/support/users/onirgoc/)
* (@onirgoc)
* [10 years, 4 months ago](https://wordpress.org/support/topic/bps-pro-version/)
* hello,
* you will find bellow my htaccess root but it doesn’t seems enough to stop unknown
robot…is it due to free bps limitation or did I made something wrong ? Do I have
to upgrade to bps pro ? (will do it as soon as budget ok …. 😉 )
* What is strange is that for some reasons for one day It seems I found the right
way: no more lines about unknown robots in Awstats but my provider put back my
old version of htaccess (!!!) and I don’t remember what I did that was working….
too bad 🙁
* Any help ? Thanks ?
* > # BULLETPROOF .53.1 >>>>>>> SECURE .HTACCESS
> # CUSTOM CODE TOP PHP/PHP.INI HANDLER/CACHE CODE
> # PHP/php.ini handler htaccess
> code AddHandler application/x-httpd-php54 .php
> # BEGIN W3TC Browser Cache
> AddType text/css .css AddType
> text/x-component .htc AddType application/x-javascript .js AddType application/
> javascript .js2 AddType text/javascript .js3 AddType text/x-js .js4 AddType
> text/html .html .htm AddType text/richtext .rtf .rtx AddType image/svg+xml .
> svg .svgz AddType text/plain .txt AddType text/xsd .xsd AddType text/xsl .xsl
> AddType text/xml .xml AddType video/asf .asf .asx .wax .wmv .wmx AddType video/
> avi .avi AddType image/bmp .bmp AddType application/java .class AddType video/
> divx .divx AddType application/msword .doc .docx AddType application/vnd.ms-
> fontobject .eot AddType application/x-msdownload .exe AddType image/gif .gif
> AddType application/x-gzip .gz .gzip AddType image/x-icon .ico AddType image/
> jpeg .jpg .jpeg .jpe AddType application/json .json AddType application/vnd.
> ms-access .mdb AddType audio/midi .mid .midi AddType video/quicktime .mov .
> qt AddType audio/mpeg .mp3 .m4a AddType video/mp4 .mp4 .m4v AddType video/mpeg.
> mpeg .mpg .mpe AddType application/vnd.ms-project .mpp AddType application/
> x-font-otf .otf AddType application/vnd.ms-opentype .otf AddType application/
> vnd.oasis.opendocument.database .odb AddType application/vnd.oasis.opendocument.
> chart .odc AddType application/vnd.oasis.opendocument.formula .odf AddType
> application/vnd.oasis.opendocument.graphics .odg AddType application/vnd.oasis.
> opendocument.presentation .odp AddType application/vnd.oasis.opendocument.spreadsheet.
> ods AddType application/vnd.oasis.opendocument.text .odt AddType audio/ogg .
> ogg AddType application/pdf .pdf AddType image/png .png AddType application/
> vnd.ms-powerpoint .pot .pps .ppt .pptx AddType audio/x-realaudio .ra .ram AddType
> application/x-shockwave-flash .swf AddType application/x-tar .tar AddType image/
> tiff .tif .tiff AddType application/x-font-ttf .ttf .ttc AddType application/
> vnd.ms-opentype .ttf .ttc AddType audio/wav .wav AddType audio/wma .wma AddType
> application/vnd.ms-write .wri AddType application/font-woff .woff AddType application/
> vnd.ms-excel .xla .xls .xlsx .xlt .xlw AddType application/zip .zip > ExpiresActive On ExpiresByType text/css A31536000
> ExpiresByType text/x-component A31536000 ExpiresByType application/x-javascript
> A31536000 ExpiresByType application/javascript A31536000 ExpiresByType text/
> javascript A31536000 ExpiresByType text/x-js A31536000 ExpiresByType text/html
> A3600 ExpiresByType text/richtext A3600 ExpiresByType image/svg+xml A3600 ExpiresByType
> text/plain A3600 ExpiresByType text/xsd A3600 ExpiresByType text/xsl A3600
> ExpiresByType text/xml A3600 ExpiresByType video/asf A31536000 ExpiresByType
> video/avi A31536000 ExpiresByType image/bmp A31536000 ExpiresByType application/
> java A31536000 ExpiresByType video/divx A31536000 ExpiresByType application/
> msword A31536000 ExpiresByType application/vnd.ms-fontobject A31536000 ExpiresByType
> application/x-msdownload A31536000 ExpiresByType image/gif A31536000 ExpiresByType
> application/x-gzip A31536000 ExpiresByType image/x-icon A31536000 ExpiresByType
> image/jpeg A31536000 ExpiresByType application/json A31536000 ExpiresByType
> application/vnd.ms-access A31536000 ExpiresByType audio/midi A31536000 ExpiresByType
> video/quicktime A31536000 ExpiresByType audio/mpeg A31536000 ExpiresByType
> video/mp4 A31536000 ExpiresByType video/mpeg A31536000 ExpiresByType application/
> vnd.ms-project A31536000 ExpiresByType application/x-font-otf A31536000 ExpiresByType
> application/vnd.ms-opentype A31536000 ExpiresByType application/vnd.oasis.opendocument.
> database A31536000 ExpiresByType application/vnd.oasis.opendocument.chart A31536000
> ExpiresByType application/vnd.oasis.opendocument.formula A31536000 ExpiresByType
> application/vnd.oasis.opendocument.graphics A31536000 ExpiresByType application/
> vnd.oasis.opendocument.presentation A31536000 ExpiresByType application/vnd.
> oasis.opendocument.spreadsheet A31536000 ExpiresByType application/vnd.oasis.
> opendocument.text A31536000 ExpiresByType audio/ogg A31536000 ExpiresByType
> application/pdf A31536000 ExpiresByType image/png A31536000 ExpiresByType application/
> vnd.ms-powerpoint A31536000 ExpiresByType audio/x-realaudio A31536000 ExpiresByType
> image/svg+xml A31536000 ExpiresByType application/x-shockwave-flash A31536000
> ExpiresByType application/x-tar A31536000 ExpiresByType image/tiff A31536000
> ExpiresByType application/x-font-ttf A31536000 ExpiresByType application/vnd.
> ms-opentype A31536000 ExpiresByType audio/wav A31536000 ExpiresByType audio/
> wma A31536000 ExpiresByType application/vnd.ms-write A31536000 ExpiresByType
> application/font-woff A31536000 ExpiresByType application/vnd.ms-excel A31536000
> ExpiresByType application/zip A31536000 > Header append Vary User-Agent env=!dont-vary > AddOutputFilterByType DEFLATE text/css text/x-component application/x-javascript
> application/javascript text/javascript text/x-js text/html text/richtext image/
> svg+xml text/plain text/xsd text/xsl text/xml image/x-icon application/json
> # DEFLATE by extension AddOutputFilter DEFLATE js css
> htm html xml |js4|CSS|HTC|LESS|JS|JS2|JS3|JS4)$”> FileETag MTime Size c> Header set Pragma “public” Header append Cache-Control “public” Header set
> X-Powered-By “W3 Total Cache/0.9.4.1” html|htm|rtf|rtx|svg|svgz|txt|xsd|xsl|xml|HTML|HTM|RTF|RTX|SVG|SVGZ|TXT|XSD
> |XSL|XML)$”> FileETag MTime Size Header set Pragma“
> public” Header append Cache-Control “public” Header set X-Powered-By “W3 Total
> Cache/0.9.4.1” |avi|bmp|class|divx|doc|docx|eot|exe|gif|gz|gzip|ico|jpg|jpeg|jpe|json|mdb|
> mid|midi|mov|qt|mp3|m4a|mp4|m4v|mpeg|mpg|mpe|mpp|otf|odb|odc|odf|odg|odp|ods
> |odt|ogg|pdf|png|pot|pps|ppt|pptx|ra|ram|svg|svgz|swf|tar|tif|tiff|ttf|ttc|
> wav|wma|wri|woff|xla|xls|xlsx|xlt|xlw|zip|ASF|ASX|WAX|WMV|WMX|AVI|BMP|CLASS
> |DIVX|DOC|DOCX|EOT|EXE|GIF|GZ|GZIP|ICO|JPG|JPEG|JPE|JSON|MDB|MID|MIDI|MOV|QT
> |MP3|M4A|MP4|M4V|MPEG|MPG|MPE|MPP|OTF|ODB|ODC|ODF|ODG|ODP|ODS|ODT|OGG|PDF|PNG
> |POT|PPS|PPT|PPTX|RA|RAM|SVG|SVGZ|SWF|TAR|TIF|TIFF|TTF|TTC|WAV|WMA|WRI|WOFF
> |XLA|XLS|XLSX|XLT|XLW|ZIP)$”> FileETag MTime Size
> Header set Pragma “public” Header append Cache-Control “public” Header set
> X-Powered-By “W3 Total Cache/0.9.4.1” # END W3TC
> Browser Cache
> # BEGIN W3TC Page Cache core
> RewriteEngine On RewriteBase/
> RewriteCond %{HTTP:Accept-Encoding} gzip RewriteRule .* – [E=W3TC_ENC:_gzip]
> RewriteCond %{HTTP_COOKIE} w3tc_preview [NC] RewriteRule .* – [E=W3TC_PREVIEW:
> _preview] RewriteCond %{REQUEST_METHOD} !=POST RewriteCond %{QUERY_STRING}
> =”” RewriteCond %{REQUEST_URI} \/$ RewriteCond %{HTTP_COOKIE} !(comment_author
> |wp\-postpass|w3tc_logged_out|wordpress_logged_in|wptouch_switch_toggle) [NC]
> RewriteCond “%{DOCUMENT_ROOT}/wp-content/cache/page_enhanced/%{HTTP_HOST}/%{
> REQUEST_URI}/_index%{ENV:W3TC_PREVIEW}.html%{ENV:W3TC_ENC}” -f RewriteRule .*“/
> wp-content/cache/page_enhanced/%{HTTP_HOST}/%{REQUEST_URI}/_index%{ENV:W3TC_PREVIEW}.
> html%{ENV:W3TC_ENC}” [L] # END W3TC Page Cache core
> # TURN OFF YOUR SERVER SIGNATURE
> # Suppresses the footer line server version
> number and ServerName of the serving virtual host ServerSignature Off
> # DO NOT SHOW DIRECTORY LISTING
> # Disallow mod_autoindex from displaying a
> directory listing # If a 500 Internal Server Error occurs when activating Root
> BulletProof Mode # copy the entire DO NOT SHOW DIRECTORY LISTING and DIRECTORY
> INDEX sections of code # and paste it into BPS Custom Code and comment out
> Options -Indexes # by adding a # sign in front of it. # Example: #Options -
> Indexes Options -Indexes
> # DIRECTORY INDEX FORCE INDEX.PHP
> # Use index.php as default directory index
> file. index.html will be ignored. # If a 500 Internal Server Error occurs when
> activating Root BulletProof Mode # copy the entire DO NOT SHOW DIRECTORY LISTING
> and DIRECTORY INDEX sections of code # and paste it into BPS Custom Code and
> comment out DirectoryIndex # by adding a # sign in front of it. # Example: #
> DirectoryIndex index.php index.html /index.php DirectoryIndex index.php index.
> html /index.php
> # CUSTOM CODE BRUTE FORCE LOGIN PAGE PROTECTION
> # BRUTE FORCE LOGIN PAGE PROTECTION#
> Protects the Login page from SpamBots, HackerBots & Proxies # that use Server
> Protocol HTTP/1.0 or a blank User Agent RewriteCond %{REQUEST_URI} ^(/wp-login\.
> php|.*wp-login\.php.*)$ RewriteCond %{HTTP_USER_AGENT} ^$ [OR] RewriteCond %{
> THE_REQUEST} HTTP/1\.0$ [OR] RewriteCond %{SERVER_PROTOCOL} HTTP/1\.0$ RewriteRule
> ^(.*)$ – [F,L]
> # BPS ERROR LOGGING AND TRACKING
> # Use BPS Custom Code to modify/edit/change
> this code and to save it permanently. # BPS has premade 400 Bad Request, 403
> Forbidden, 404 Not Found, 405 Method Not Allowed and # 410 Gone template logging
> files that are used to track and log 400, 403, 404, 405 and 410 errors # that
> occur on your website. When a hacker attempts to hack your website the hackers
> IP address, # Host name, Request Method, Referering link, the file name or
> requested resource, the user agent # of the hacker and the query string used
> in the hack attempt are logged. # All BPS log files are htaccess protected
> so that only you can view them. # The 400.php, 403.php, 404.php, 405.php and
> 410.php files are located in /wp-content/plugins/bulletproof-security/ # The
> 400, 403, 405 and 410 Error logging files are already set up and will automatically
> start logging errors # after you install BPS and have activated BulletProof
> Mode for your Root folder. # If you would like to log 404 errors you will need
> to copy the logging code in the BPS 404.php file # to your Theme’s 404.php
> template file. Simple instructions are included in the BPS 404.php file. #
> You can open the BPS 404.php file using the WP Plugins Editor or manually editing
> the file. # NOTE: By default WordPress automatically looks in your Theme’s
> folder for a 404.php Theme template file.
> ErrorDocument 400 /wp-content/plugins/bulletproof-security/400.php
> ErrorDocument
> 401 default ErrorDocument 403 /wp-content/plugins/bulletproof-security/403.
> php ErrorDocument 404 /404.php ErrorDocument 405 /wp-content/plugins/bulletproof-
> security/405.php ErrorDocument 410 /wp-content/plugins/bulletproof-security/
> 410.php
> # DENY ACCESS TO PROTECTED SERVER FILES AND FOLDERS
> # Use BPS Custom Code
> to modify/edit/change this code and to save it permanently. # Files and folders
> starting with a dot: .htaccess, .htpasswd, .errordocs, .logs RedirectMatch
> 403 \.(htaccess|htpasswd|errordocs|logs)$
> # WP-ADMIN/INCLUDES
> # Use BPS Custom Code to remove this code permanently.
> RewriteEngine On RewriteBase / RewriteRule ^wp-admin/includes/ – [F] RewriteRule!
> ^wp-includes/ – [S=3] RewriteRule ^wp-includes/[^/]+\.php$ – [F] RewriteRule
> ^wp-includes/js/tinymce/langs/.+\.php – [F] RewriteRule ^wp-includes/theme-
> compat/ – [F]
> # WP REWRITE LOOP START
> RewriteEngine On RewriteBase / RewriteRule ^index\.
> php$ – [L]
> # REQUEST METHODS FILTERED
> # If you want to allow HEAD Requests use BPS Custom
> Code and copy # this entire REQUEST METHODS FILTERED section of code to this
> BPS Custom Code # text box: CUSTOM CODE REQUEST METHODS FILTERED. # See the
> CUSTOM CODE REQUEST METHODS FILTERED help text for additional steps. RewriteCond%{
> REQUEST_METHOD} ^(TRACE|DELETE|TRACK|DEBUG) [NC] RewriteRule ^(.*)$ – [F] RewriteCond%{
> REQUEST_METHOD} ^(HEAD) [NC] RewriteRule ^(.*)$ – [R=405,L]
> # PLUGINS/THEMES AND VARIOUS EXPLOIT FILTER SKIP RULES
> # To add plugin/theme
> skip/bypass rules use BPS Custom Code. # The [S] flag is used to skip following
> rules. Skip rule [S=12] will skip 12 following RewriteRules. # The skip rules
> MUST be in descending consecutive number order: 12, 11, 10, 9… # If you delete
> a skip rule, change the other skip rule numbers accordingly. # Examples: If
> RewriteRule [S=5] is deleted than change [S=6] to [S=5], [S=7] to [S=6], etc.#
> If you add a new skip rule above skip rule 12 it will be skip rule 13: [S=13]
> # Adminer MySQL management tool data populate
> RewriteCond %{REQUEST_URI} ^/
> wp-content/plugins/adminer/ [NC] RewriteRule . – [S=12] # Comment Spam Pack
> MU Plugin – CAPTCHA images not displaying RewriteCond %{REQUEST_URI} ^/wp-content/
> mu-plugins/custom-anti-spam/ [NC] RewriteRule . – [S=11] # Peters Custom Anti-
> Spam display CAPTCHA Image RewriteCond %{REQUEST_URI} ^/wp-content/plugins/
> peters-custom-anti-spam-image/ [NC] RewriteRule . – [S=10] # Status Updater
> plugin fb connect RewriteCond %{REQUEST_URI} ^/wp-content/plugins/fb-status-
> updater/ [NC] RewriteRule . – [S=9] # Stream Video Player – Adding FLV Videos
> Blocked RewriteCond %{REQUEST_URI} ^/wp-content/plugins/stream-video-player/[
> NC] RewriteRule . – [S=8] # XCloner 404 or 403 error when updating settings
> RewriteCond %{REQUEST_URI} ^/wp-content/plugins/xcloner-backup-and-restore/[
> NC] RewriteRule . – [S=7] # BuddyPress Logout Redirect RewriteCond %{QUERY_STRING}
> action=logout&redirect_to=http%3A%2F%2F(.*) [NC] RewriteRule . – [S=6] # redirect_to
> = RewriteCond %{QUERY_STRING} redirect_to=(.*) [NC] RewriteRule . – [S=5] #
> Login Plugins Password Reset And Redirect 1 RewriteCond %{QUERY_STRING} action
> =resetpass&key=(.*) [NC] RewriteRule . – [S=4] # Login Plugins Password Reset
> And Redirect 2 RewriteCond %{QUERY_STRING} action=rp&key=(.*) [NC] RewriteRule.–[
> S=3]
> # TIMTHUMB FORBID RFI and MISC FILE SKIP/BYPASS RULE
> # Use BPS Custom Code
> to modify/edit/change this code and to save it permanently. # Remote File Inclusion(
> RFI) security rules # Note: Only whitelist your additional domains or files
> if needed – do not whitelist hacker domains or files RewriteCond %{QUERY_STRING}
> ^.*(http|https|ftp)(%3A|:)(%2F|/)(%2F|/)(w){0,3}.?(blogger|picasa|blogspot|
> tsunami|petapolitik|photobucket|imgur|imageshack|wordpress\.com|img\.youtube
> |tinypic\.com|upload\.wikimedia|kkc|start-thegame).*$ [NC,OR] RewriteCond %{
> THE_REQUEST} ^.*(http|https|ftp)(%3A|:)(%2F|/)(%2F|/)(w){0,3}.?(blogger|picasa
> |blogspot|tsunami|petapolitik|photobucket|imgur|imageshack|wordpress\.com|img\.
> youtube|tinypic\.com|upload\.wikimedia|kkc|start-thegame).*$ [NC] RewriteRule.*
> index.php [F] # # Example: Whitelist additional misc files: (example\.php|another-
> file\.php|phpthumb\.php|thumb\.php|thumbs\.php) RewriteCond %{REQUEST_URI} (
> timthumb\.php|phpthumb\.php|thumb\.php|thumbs\.php) [NC] # Example: Whitelist
> additional website domains: RewriteCond %{HTTP_REFERER} ^.*(YourWebsite.com
> |AnotherWebsite.com).* RewriteCond %{HTTP_REFERER} ^.*cogerino.com.* RewriteRule.–[
> S=1]
> # CUSTOM CODE BPSQSE BPS QUERY STRING EXPLOITS
> # CUSTOM CODE BPSQSE BPS QUERY
> STRING EXPLOITS # BEGIN BPSQSE-check BPS QUERY STRING EXPLOITS AND FILTERS #
> WORDPRESS WILL BREAK IF ALL THE BPSQSE FILTERS ARE DELETED # Use BPS wp-admin
> Custom Code to modify/edit/change this code and to save it permanently. RewriteCond%{
> HTTP_USER_AGENT} (%0A|%0D|%27|%3C|%3E|%00) [NC,OR] RewriteCond %{HTTP_USER_AGENT}(
> archiver|clshttp|curl|email|extract|grab|harvest|havij|HTTrack|java|libwww-
> perl|loader|miner|nikto|python|scan|wget|winhttp|xovi|xenu) [NC,OR] RewriteCond%{
> THE_REQUEST} (\?|\*|%2a)+(%20+|\\s+|%20+\\s+|\\s+%20+|\\s+%20+\\s+)HTTP(:/|/)[
> NC,OR] RewriteCond %{THE_REQUEST} etc/passwd [NC,OR] RewriteCond %{THE_REQUEST}
> cgi-bin [NC,OR] RewriteCond %{THE_REQUEST} (%0A|%0D) [NC,OR] RewriteCond %{
> REQUEST_URI} owssvr\.dll [NC,OR] RewriteCond %{HTTP_REFERER} (%0A|%0D|%27|%
> 3C|%3E|%00) [NC,OR] RewriteCond %{HTTP_REFERER} \.opendirviewer\. [NC,OR] RewriteCond%{
> HTTP_REFERER} users\.skynet\.be.* [NC,OR] RewriteCond %{QUERY_STRING} [a-zA-
> Z0-9_]=http:// [NC,OR] RewriteCond %{QUERY_STRING} [a-zA-Z0-9_]=(\.\.//?)+ [
> NC,OR] RewriteCond %{QUERY_STRING} [a-zA-Z0-9_]=/([a-z0-9_.]//?)+ [NC,OR] RewriteCond%{
> QUERY_STRING} \=PHP[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{
> 12} [NC,OR] RewriteCond %{QUERY_STRING} (\.\./|%2e%2e%2f|%2e%2e/|\.\.%2f|%2e\.%
> 2f|%2e\./|\.%2e%2f|\.%2e/) [NC,OR] RewriteCond %{QUERY_STRING} ftp\: [NC,OR]
> RewriteCond %{QUERY_STRING} http\: [NC,OR] RewriteCond %{QUERY_STRING} https\:[
> NC,OR] RewriteCond %{QUERY_STRING} \=\|w\| [NC,OR] RewriteCond %{QUERY_STRING}
> ^(.*)/self/(.*)$ [NC,OR] RewriteCond %{QUERY_STRING} ^(.*)cPath=http://(.*)
> $ [NC,OR] RewriteCond %{QUERY_STRING} (\<|%3C).*script.*(\>|%3E) [NC,OR] RewriteCond%{
> QUERY_STRING} (<|%3C)([^s]*s)+cript.*(>|%3E) [NC,OR] RewriteCond %{QUERY_STRING}(\
> <|%3C).*iframe.*(\>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} (<|%3C)([^i]*i)
> +frame.*(>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} base64_encode.*\(.*\) [
> NC,OR] RewriteCond %{QUERY_STRING} base64_(en|de)code[^(]*\([^)]*\) [NC,OR]
> RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR] RewriteCond %{
> QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2}) [OR] RewriteCond %{QUERY_STRING}
> ^.*(\(|\)|<|>).* [NC,OR] RewriteCond %{QUERY_STRING} (NULL|OUTFILE|LOAD_FILE)[
> OR] RewriteCond %{QUERY_STRING} (\.{1,}/)+(motd|etc|bin) [NC,OR] RewriteCond%{
> QUERY_STRING} (localhost|loopback|127\.0\.0\.1) [NC,OR] RewriteCond %{QUERY_STRING}(
> <|>|’|%0A|%0D|%27|%3C|%3E|%00) [NC,OR] RewriteCond %{QUERY_STRING} concat[^\(]*\([
> NC,OR] RewriteCond %{QUERY_STRING} union([^s]*s)+elect [NC,OR] RewriteCond %{
> QUERY_STRING} union([^a]*a)+ll([^s]*s)+elect [NC,OR] RewriteCond %{QUERY_STRING}(;
> |<|>|’|”|\)|%0A|%0D|%22|%27|%3C|%3E|%00).*(/\*|union|select|insert|drop|delete
> |update|cast|create|char|convert|alter|declare|order|script|set|md5|benchmark
> |encode) [NC,OR] RewriteCond %{QUERY_STRING} (sp_executesql) [NC] RewriteRule
> ^(.*)$ – [F] # END BPSQSE-check BPS QUERY STRING EXPLOITS AND FILTERS
> RewriteCond %{REQUEST_FILENAME} !-f
> RewriteCond %{REQUEST_FILENAME} !-d RewriteRule./
> index.php [L] # WP REWRITE LOOP END
> # DENY BROWSER ACCESS TO THESE FILES
> # Use BPS Custom Code to modify/edit/
> change this code and to save it permanently. # wp-config.php, bb-config.php,
> php.ini, php5.ini, readme.html # To be able to view these files from a Browser,
> replace 127.0.0.1 with your actual # current IP address. Comment out: #Deny
> from all and Uncomment: Allow from 127.0.0.1 # Note: The BPS System Info page
> displays which modules are loaded on your server.
> >
> Order Allow,Deny Deny from all #Allow from 127.0.0.1
> # CUSTOM CODE BOTTOM HOTLINKING/FORBID COMMENT SPAMMERS/BLOCK BOTS/BLOCK IP/
> REDIRECT CODE
> # CUSTOM CODE BOTTOM HOTLINKING/FORBID COMMENT SPAMMERS/BLOCK
> BOTS/BLOCK IP/REDIRECT CODE # PLACEHOLDER ONLY # Use BPS Custom Code to add
> custom code and save it permanently here.
> # Block/Forbid Referer Spammers/Referer Phishing
> RewriteCond %{HTTP_REFERER}
> ^.*(ranksonic\.|semalt\.|kambasoft\.|buttons-for-website\.|cyberspacers\.|top1-
> seo-service\.|site.fliphtml5\.|pizza-tycoon\.|buttons-for-your-website\.|4webmasters\.
> |social-buttons\.|best-seo-offer\.|best-seo-solution\.).*$ [NC] RewriteRule
> ^(.*)$ – [F]
> # sitewide protection against blank User Agents/Bots
> RewriteCond %{HTTP_USER_AGENT}
> ^$ RewriteRule ^(.*)$ – [F,L]
* [https://wordpress.org/plugins/bulletproof-security/](https://wordpress.org/plugins/bulletproof-security/)
Viewing 3 replies - 1 through 3 (of 3 total)
* Plugin Author [AITpro](https://wordpress.org/support/users/aitpro/)
* (@aitpro)
* [10 years, 4 months ago](https://wordpress.org/support/topic/bps-pro-version/#post-6952722)
* Stopping Bots on your website and stopping Bots from being logged in Awstats
are 2 completely different/separate things. I assume Awstats works like all other
stats software and tracks visits to your website separately. Example: if you
add code to block Bots on your website then they will be blocked. Awstats tracks
visits to your website separately with separate tracking code so the visits by
Bots will still be logged/tracked by Awstats.
* When I do this google search: awstats filter bots
I found this link about how
to filter bots in awstats. [http://serverfault.com/questions/598356/awstats-how-to-disable-the-robots-detection](http://serverfault.com/questions/598356/awstats-how-to-disable-the-robots-detection)
* Thread Starter [onirgoc](https://wordpress.org/support/users/onirgoc/)
* (@onirgoc)
* [10 years, 4 months ago](https://wordpress.org/support/topic/bps-pro-version/#post-6952732)
* ok thanks to know…but don’t have any way to access awstats has it’s provide by
my host
* Plugin Author [AITpro](https://wordpress.org/support/users/aitpro/)
* (@aitpro)
* [10 years, 4 months ago](https://wordpress.org/support/topic/bps-pro-version/#post-6952733)
* Ok then contact your host to see if they can do what you want to do. 😉
Viewing 3 replies - 1 through 3 (of 3 total)
The topic ‘BPS Pro version ?’ is closed to new replies.
* 
* [BulletProof Security](https://wordpress.org/plugins/bulletproof-security/)
* [Support Threads](https://wordpress.org/support/plugin/bulletproof-security/)
* [Active Topics](https://wordpress.org/support/plugin/bulletproof-security/active/)
* [Unresolved Topics](https://wordpress.org/support/plugin/bulletproof-security/unresolved/)
* [Reviews](https://wordpress.org/support/plugin/bulletproof-security/reviews/)
* 3 replies
* 2 participants
* Last reply from: [AITpro](https://wordpress.org/support/users/aitpro/)
* Last activity: [10 years, 4 months ago](https://wordpress.org/support/topic/bps-pro-version/#post-6952733)
* Status: resolved