htaccess modification queries

  • Resolved maliwoot

    (@maliwoot)


    11 years, 8 months ago

    Hi there,

    First and foremost, thanks for a great plugin!

    I’m having some problems understanding some of the changes made on the root and wp-admin htaccess files.

    1. A lot of the added security code is placed between the # BEGIN WORDPRESS AND #END WORDPRESS tags. Doesn’t this mean that wordpress can overwrite anything in between this?

    2. You’ve added the below too, but should it have the ifmodule before and after like so? From WordPress codex.

    `<IfModule mod_rewrite.c>

    RewriteEngine On
    RewriteBase /
    RewriteRule ^wp-admin/includes/ – [F,L]
    RewriteRule !^wp-includes/ – [S=3]
    RewriteRule ^wp-includes/[^/]+\.php$ – [F,L]
    RewriteRule ^wp-includes/js/tinymce/langs/.+\.php – [F,L]
    RewriteRule ^wp-includes/theme-compat/ – [F,L]

    </IfModule>`

    3. In the places where we need to add our own IP address, does this only work if you have a static IP? Perhaps my knowledge of IPs is not that great, but I’m unsure how this would work considering my IP changes pretty much everyday.

    4. I’m currently deciding on which security plugin suits me the most, would using any of your more comprehensive htaccess code adversely affect or have no effect on my site if I were to manually add it to the htaccess file when the BPS plugin no longer is activated and I’m using another plugin?

    https://ww.wp.xz.cn/plugins/bulletproof-security/

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author AITpro

    (@aitpro)

    11 years, 8 months ago

    1. If you lock your root .htaccess file on the htaccess File Editor tab page then it will be locked with Read Only permissions so that it cannot be written to until you unlock it.

    2. Nope, the IfModule directive is not necessary.

    Encloses directives that are processed conditional on the presence or absence of a specific module

    If mod_rewrite is NOT available, which is highly unlikely on any Apache server these days, then the code will be ignored / not processed. In other words, the condition does not really need to check if mod_rewrite is available. Probably to be 100% code accurate you would use IfModule.

    3. You would use: 1, 2 or 3 octets of your IP address and not all 4 octets for an IP address that is DHCP assigned by your ISP. See this forum topic to see some examples: http://forum.ait-pro.com/forums/topic/protect-login-page-from-brute-force-login-attacks/

    4. See the BPS Custom Code Read Me help button on BPS Custom Code page and this video tutorial: http://forum.ait-pro.com/video-tutorials/#custom-code to get a general idea of how to mix and match and customize your htaccess code/files with BPS Custom Code. Parts of your questions are hypothetical so I cannot really provide any kind of specific answer or make accurate generalized guesses. Typically if you run into a problem or complication you would post the specific details of the BPS issue/problem in this forum and we would provide a solution.

    Thread Starter maliwoot

    (@maliwoot)

    11 years, 8 months ago

    Regarding the IP octets, my IP has change entirely this last week, and all the digits are completely different. What would you recommend?

    Thanks for your reply!

    Plugin Author AITpro

    (@aitpro)

    11 years, 8 months ago

    http://en.wikipedia.org/wiki/IP_address

    You can whitelist multiple IP addresses. Check with your ISP and see how many different IP addresses they use and then whitelist all of those possible IP’s.

    Example:

    Allow from 99.88.
Allow from 100.99.
Allow from 101.77.

    Plugin Author AITpro

    (@aitpro)

    11 years, 8 months ago

    Thread Start Date: 9-20-2014 to 9-21-2014
    Current Date: 9-23-2014

    Assuming that all questions were answered – thread has been resolved. If you have additional questions about this specific thread topic then please post them. Thanks.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘htaccess modification queries’ is closed to new replies.

Tags