Firewall, Malware Scanner, Two Factor Auth, and Comprehensive Security Features, powered by our 24-hour team. Make security a priority with Wordfence.
Apocalypse Meow
Hospedagem WordPress com plugin Apocalypse Meow
Onde devo hospedar o plugin Apocalypse Meow?
Este plugin pode ser hospedado em qualquer provedor que tenha WordPress configurado. Recomendamos escolher uma empresa de hospedagem de confiança, com servidores adaptados para WordPress, como o serviço de hospedagem da MCO2.
Hospedando o plugin Apocalypse Meow em uma empresa de hospedagem seguro
A MCO2, além de instalar o WordPress na versão mais atualizada para seus clientes, oferece o plugin WP SafePress, um mecanismo exclusivo que salvaguarda e melhora seu site simultaneamente.
Por que a Hospedagem WordPress funciona melhor na MCO2?
A Hospedagem WordPress funciona melhor pois a MCO2 possui servidores otimizados para WordPress. A instalação de WordPress é diferente de uma instalação trivial, pois habilita imediatamente recursos como otimização de imagens e fotos, proteção da página de login, bloqueio de atividades maliciosas diretamente no firewall, cache avançado e HTTPS ativado por padrão. São plugins que potencializam seu WordPress para a máxima segurança e o máximo desempenho.
Apocalypse Meow’s main focus is addressing WordPress security issues related to user accounts and logins. This includes things like:
- Brute-force login-in protection;
- Customizable password strength requirements;
- XML-RPC access controls;
- Account access alerts;
- Searchable access logs (including failed login attempts and temporary bans);
- User enumeration prevention;
- Registration SPAM protection;
- Miscellaneous Core and template options to make targeted hacks more difficult;
Security is an admittedly technical subject, but Apocalypse Meow strives to help educate “normal” users about the nature of common web attacks, mitigation techniques, etc. Every option contains detailed explanations and links to external resources with additional information.
Knowledge is power!
Requirements
Due to the advanced nature of some of the plugin features, there are a few additional server requirements beyond what WordPress itself requires:
- WordPress 4.4+.
- PHP 7.3 or later.
- PHP extensions: (bcmath or gmp), date, filter, json, pcre.
CREATEandDROPMySQL grants.- Single-site Installs (i.e. Multi-Site is not supported).
Please note: it is not safe to run WordPress atop a version of PHP that has reached its End of Life. Future releases of this plugin might, out of necessity, drop support for old, unmaintained versions of PHP. To ensure you continue to receive plugin updates, bug fixes, and new features, just make sure PHP is kept up-to-date. 🙂
Log Monitoring
Some robots are so dumb they’ll continue trying to submit credentials even after the login form is replaced, wasting system resources and clogging up the log-in history table. One way to mitigate this is to use a server-side log-monitoring program like Fail2Ban or OSSEC to ban users via the firewall.
Apocalypse Meow produces a 403 error when a banned user requests the login form. Your log-monitoring rule should therefore look for repeated 403 responses to wp-login.php. Additionally, some robots are unable to follow redirects; if your login form requires SSL, you should also ban repeated 301/302 responses to catch those fools.
If you have enabled user enumeration protection with the die() option, requests for ?author=X will produce a 400 response code which can be similarly tracked.
Privacy Policy
When active, this plugin retains security logs of every sign-in attempt made to the CMS backend. This information — including the end user’s public IP address, username, and the status of his or her attempt — is used to help prevent unauthorized system access and maintain Quality of Service for all site visitors.
This information resides fully on the hosting web site and is not shared with any third parties unless the Community Pool feature is enabled, in which case any IP addresses responsible for attacks against your web site are periodically shared with Blobfolio, LLC, the maintainer of the centralized database. If any of those IP addresses are subsequently identified by multiple, independent sources, they will be published to a public blocklist (hosted by Blobfolio).
Data retention is entirely up to the site operator, but by default old records are automatically removed after 90 days.
Please note: Apocalypse Meow DOES NOT integrate with any WordPress GDPR “Personal Data” features. (Selective erasure of audit logs would undermine the security mechanisms provided by this plugin. Haha.)
Capturas de tela
View and search the login history and manage banned users.
All settings include detailed explanations, suggestions, and links to additional resources. Not only will your site be vastly more secure, you'll learn a lot!
The Community Pool: the login blocklist can ultimately be extended to include community-reported attack data, vastly increasing the effectiveness of the brute-force login mitigation.
Simple but sexy statistics.
A ton of additional security and management tools for system administrators, including an ability to view and revoke individual user sessions.
A full suite of WP-CLI tools, hookable functions and filters to interact with or extend the login protection features, read-only configurations, and detailed documentation covering it all!
Plugins semelhantes
Easily improve site security with WordPress Hardening, Two-Factor Authentication (2FA), Login Protection, Vulnerability Detection and SSL certificate.
Aprimore sua segurança no WP com ferramentas avançadas de um clique, como backup, WAF e verificação de malware. Inclui as ferramentas essenciais gratuitas como estatísticas, CDN e compartilhamento em redes sociais.
Block excessive login attempts and protect your site against brute force attacks. Simple, yet powerful tools to improve site performance.
Loginizer is a WordPress security plugin which helps you fight against bruteforce attacks.
Protect your website investment with All-In-One Security (AIOS) – a comprehensive and easy to use security plugin designed especially for WordPress.
Do mesmo author (Blobfolio, LLC)
This plugin expands file-related security and sanity around the upload process.