BBQ includes many protection mechanisms and is recommended for sites where .htaccess files are not used due to technical reasons.
Under the hood, BBQ works by blocking any server request that contain long strings, base64_ strings, or eval statements.
BBQ also uses the 5G/6G public blacklists, scanning all incoming traffic for known attack locations.
The plugin does not require any configuration. Just install and you're ready to go.
Installation:
Unpack and upload it to the /wp-content/plugins/ directory.
Activate the plugin through the 'Plugins' menu in WordPress.
What is new in this release:
- Replaced "UNION+SELECT" with "UNION.*SELECT"
- Added "wp-config.php" to query-string patterns
- Added plugin link to BBQ Pro
What is new in version 20150624:
- Replaced "UNION+SELECT" with "UNION.*SELECT"
- Added "wp-config.php" to query-string patterns
- Added plugin link to BBQ Pro
What is new in version 20150507:
- Introduced bbq_core()
- Tested on latest WP
- Tightened up code
What is new in version 20150314:
- Introduced bbq_core()
- Tested on latest WP
- Tightened up code
What is new in version 20140922:
- Tested on latest version of WordPress (4.0)
- Re-tested on Multisite
- Increased minimum version requirement to WP 3.7
What is new in version 20140305:
- Bug fix:
- Added conditional checks for empty variables.
What is new in version 20131103:
- Added optional line for blocking long URLs
- Added line to prevent direct access to BBQ script
- Added "\;Nt.", "\=Nt.", "\,Nt." to request URI items
- Tested on latest version of WordPress (3.7)
What is new in version 20130707:
- Replaced "Nt." with "\/Nt."
What is new in version 20130704:
- Removed block for "jakarta" in user-agents.
- Removed "union" from query strings.
What is new in version 20121108:
- Removed ":" match from query string (Google disregards encoding).
- Removed "scanner" from query string from query string match.
- Streamlined source code for better performance.
Requirements:
- WordPress 3.7 or higher
Comments not found