前言介紹
- 這款 WordPress 外掛「Proactive Security Suite」是 2025-01-31 上架。
- 目前尚無安裝啟用數,是個很新的外掛。如有要安裝使用,建議多測試確保功能沒問題!
- 上一次更新是 2025-02-27,距離現在已有 66 天。
- 外掛最低要求 WordPress 5.2 以上版本才可以安裝。
- 外掛要求網站主機運作至少需要 PHP 版本 7.4 以上。
- 有 1 人給過評分。
- 還沒有人在論壇上發問,可能目前使用數不多,還沒有什麼大問題。
外掛協作開發者
外掛標籤
firewall | security | wordfence | cloudflare | wordpress security |
內容簡介
_HTML code for presenting in Chinese is not supported. If you require assistance with the provided content, I can provide a plaintext version. Let me know if you would like that.
原文外掛簡介
Welcome to the ProActive Security Suite Plugin Wiki
Enhance your WordPress website’s security with the ProActive Security Suite. This powerful plugin offers advanced security features including automatic IP blocking, an advanced rule builder, traffic analysis, and seamless integration with services like Cloudflare, AbuseIPDB, and Whatismybrowser.com. ProActive Security Suite provides proactive defense mechanisms to protect your site from malicious traffic and potential threats before they reach your server.
Table of Contents
Introduction
Features
Free Features
Premium Features
Installation
Configuration
Cloudflare Settings
AbuseIPDB Integration
WhatIsMyBrowser.com Integration
Usage
Automatic IP Synchronization
Manual Synchronization
Captured Traffic Data
Advanced Rule Builder
Rule Details in Blocked IPs
Advanced Settings
Frequently Asked Questions
Support and Contribution
License
Introduction
Welcome to the ProActive Security Suite plugin! This comprehensive security solution enhances your website’s protection by combining advanced threat detection, automated rule-based actions, and integration with services like Cloudflare and AbuseIPDB. By proactively analyzing traffic and applying custom security rules, ProActive Security Suite stops malicious traffic before it reaches your server, reducing load and enhancing performance.
Download Latest Release
Features
Free Features
Automatic IP Synchronization: Effortlessly sync blocked IPs to Cloudflare’s firewall.
Customizable Settings: Tailor the plugin to your needs with adjustable settings:
Blocked Hits Threshold
Block Scope (Domain or Account)
Block Mode (e.g., Block, Managed Challenge)
Cron Interval
Manual Synchronization: Trigger synchronization manually when immediate action is needed.
AbuseIPDB Integration: Optional integration to fetch detailed information about IPs:
Country Code
Usage Type
ISP Information
Confidence Score
Premium Features
Advanced Rule Builder: Create custom security rules based on various criteria such as confidence score, whitelisted status, abusive status, and more. Automate actions like blocking or challenging IPs based on these rules.
Rule Priorities: Assign priorities to your rules to control the order of evaluation. Higher priority numbers are evaluated first, allowing critical rules to take precedence.
Automatic Action Application: The plugin automatically applies actions to IPs that match your defined rules immediately after capturing traffic data.
Rule Details in Blocked IPs: View detailed information about which rules caused IPs to be blocked, including criteria and actions taken.
Captured Traffic Data: Log and analyze incoming traffic for enhanced security insights.
Exclude User Roles: Exclude specific WordPress user roles from traffic logging.
WhatIsMyBrowser.com API Integration: Advanced user agent analysis and detection capabilities.
Enhanced AbuseIPDB Integration: Automatic updates for all entries with the same IP address.
Priority Support: Access dedicated support for assistance and troubleshooting.
Note: The premium features require an active premium license. Upgrade to access these advanced functionalities.
Installation
Download the Plugin: Clone the repository or download the latest release.
Upload to WordPress: Upload the `proactive-security-suite` directory to `/wp-content/plugins/`.
Activate the Plugin: In your WordPress dashboard, navigate to Plugins and activate ProActive Security Suite.
Configuration
Cloudflare Settings
Obtain Cloudflare Credentials:
Email: Your Cloudflare account email.
API Key: Your Global API Key or an API Token with necessary permissions.
Zone ID: Found in your Cloudflare dashboard under the domain’s overview.
Account ID: Located in your Cloudflare profile settings.
Configure Plugin Settings:
Navigate to Settings > ProActive Security Suite.
Enter your Cloudflare credentials securely.
Adjust settings like Blocked Hits Threshold, Block Scope, and Block Mode.
AbuseIPDB Integration
Sign Up for AbuseIPDB: Visit AbuseIPDB and sign up for an API key.
Enable Integration:
In the plugin settings, enter your AbuseIPDB API key.
Enable the AbuseIPDB Lookup option.
WhatIsMyBrowser.com Integration (Premium)
Obtain API Key: Register at WhatIsMyBrowser.com for an API key.
Configure Integration:
Enter the API key in the plugin’s settings under WhatIsMyBrowser API Key.
Enable the integration features as desired.
Usage
Automatic IP Synchronization
The plugin automatically syncs blocked IPs based on your configured cron interval. IPs exceeding the Blocked Hits Threshold are added to Cloudflare’s firewall or acted upon based on your defined rules.
Manual Synchronization
Navigate to Settings > ProActive Security Suite and click the Run Process button to trigger synchronization and rule evaluation immediately.
Captured Traffic Data (Premium)
Access detailed logs under the Captured Traffic Data tab. Analyze user agents, request methods, and more. Exclude specific user roles from logging in the settings.
Advanced Rule Builder (Premium)
The plugin features a powerful Rule Builder that allows you to create custom security rules based on various criteria. You can define rules using conditions such as:
Confidence Score: Set thresholds using operators like greater than, less than, equal to, etc.
Is Whitelisted: Check if an IP is marked as whitelisted in AbuseIPDB.
Is Abusive: Determine if an IP is associated with abusive behavior.
Custom Criteria: Add other criteria based on the data captured.
Each rule can be assigned an Action (e.g., Block, Managed Challenge) that will be applied to IPs matching the rule. You can also assign a Priority to control the order in which rules are evaluated.
Rule Details in Blocked IPs (Premium)
The Blocked IPs tab now includes a Rule Details column that displays comprehensive information about the rules that caused IPs to be blocked. This includes:
Criteria: The specific conditions that were met, such as confidence score thresholds, whitelisted status, and more.
Action: The action taken by the rule (e.g., Block, Managed Challenge).
This enhancement allows administrators to easily identify which rules are triggering blocks and understand the reasons behind each IP being blocked. It provides greater transparency and aids in fine-tuning security settings.
Advanced Settings
Blocked Hits Threshold: Define the minimum number of blocked hits before an IP is synchronized or evaluated by rules.
Block Scope: Choose between domain-specific or account-wide blocking.
Block Mode: Select the action for Cloudflare to take (e.g., Block, Challenge).
Cron Interval: Set how frequently the plugin checks for new blocked IPs and evaluates rules.
Rule Priorities: Assign priorities to your rules to control the order of evaluation. Higher priority numbers are evaluated first.
User Role Exclusions: Exclude specific WordPress user roles from traffic logging and rule evaluation.
Frequently Asked Questions
How do I obtain my Cloudflare Zone ID and Account ID?
Zone ID: Log into Cloudflare, select your domain, and find the Zone ID on the Overview page. Account ID: Click on your profile in Cloudflare; the Account ID is listed there.
Can I use an API Token instead of the Global API Key?
Yes, ensure the API Token has the necessary permissions for firewall access.
Is the plugin compatible with IPv6 addresses?
Absolutely, the plugin supports both IPv4 and IPv6 addresses.
How does the plugin handle my API keys?
All API keys are securely stored using WordPress’s options API and are never exposed in plain text.
How do rule priorities work?
Rule priorities determine the order in which your rules are evaluated. Rules with higher priority numbers are evaluated first. If traffic data matches a rule, the corresponding action is applied, and no further rules are evaluated for that IP address.
Can I see which rule blocked an IP?
Yes, with the Rule Details in Blocked IPs feature, you can view the exact rule criteria and action that caused an IP to be blocked. This information is displayed in the Blocked IPs tab under the Rule Details column.
How does the automatic action application work?
When traffic data is captured, the plugin immediately evaluates it against your defined rules. If a rule matches, the specified action is applied to the IP address without any manual intervention.
Support and Contribution
Support: For assistance, please open an issue on our GitHub Issues page or contact us at [email protected].
License
This project is licensed under the GNU General Public License v3.0.
Thank you for using ProActive Security Suite!
External Services
Cloudflare
– Usage: We send visitor IPs (and optionally country/ISP data) to create Firewall rules.
– Data Sent: IP address, associated rule details.
– Cloudflare Terms of Service | Cloudflare Privacy Policy
AbuseIPDB
– Usage: We check IP reputation, fetching country code, ISP, and confidence score.
– Data Sent: IP address.
– AbuseIPDB Terms of Service | Privacy Policy
WhatIsMyBrowser
– Usage: We send user agent strings to detect software (browser), OS, and if it’s abusive.
– Data Sent: User agent strings.
– WhatIsMyBrowser Terms of Service |
Legal
IPData
– Usage: We fetch detailed threat intelligence (Tor, proxy, known attacker, etc.).
– Data Sent: IP address.
– IPData Terms |
Privacy Policy
各版本下載點
- 方法一:點下方版本號的連結下載 ZIP 檔案後,登入網站後台左側選單「外掛」的「安裝外掛」,然後選擇上方的「上傳外掛」,把下載回去的 ZIP 外掛打包檔案上傳上去安裝與啟用。
- 方法二:透過「安裝外掛」的畫面右方搜尋功能,搜尋外掛名稱「Proactive Security Suite」來進行安裝。
(建議使用方法二,確保安裝的版本符合當前運作的 WordPress 環境。
trunk | 1.5.9.4 | 1.5.9.6 | 1.5.9.7 |
延伸相關外掛(你可能也想知道)
Cloudflare 》這個外掛可以為您做些什麼, , 自動平台優化 (APO), 使用 Cloudflare 的自動平台優化 (APO) 外掛,可將您的 WordPress 網站加速達 300%。APO 讓 Cloudflare 可...。
Flexible SSL for CloudFlare 》點擊查看完整的安裝指南。, 在 WordPress 上使用 CloudFlare® Flexible SSL 不像只需要打開 開關 這麼簡單。, 這個外掛插件是啟用 WordPress 上 Cloudflare ...。
Simple Cloudflare Turnstile – CAPTCHA Alternative 》輕鬆地將 Cloudflare Turnstile 添加到您的 WordPress 網站中的所有表單中,以保護它們免受垃圾郵件的影響!, 一個用戶友好、保護隱私的 reCAPTCHA 替代方案...。
Super Page Cache 》為何要選擇這個外掛?, 這個 Super Page Cache for Cloudflare 外掛可以讓您的網站加速,將網站快取提升至另一個層級。此外,這個外掛不僅會快取靜態文件(例...。
Login Security Captcha 》Login Security Captcha是一款用於WordPress的安全外掛程式,快速地為WordPress的登入、註冊、忘記密碼和留言表單添加CAPTCHA或不需要CAPTCHA的服務(例如Clo...。
Media Cloud for Bunny CDN, Amazon S3, Cloudflare R2, Google Cloud Storage, DigitalOcean and more 》Media Cloud 是 WordPress 的一款革命性外掛程式,可大幅提升您的網站效能,並徹底改變您在 WordPress 中處理媒體的方式。此外掛透過將圖像、媒體和其他檔案...。
Remove HTTP: Fix Mixed Content Warning 》, Remove HTTP 是一個外掛,可以自動掃描並從所有連結中刪除 http: 和 https: 協議。這有助於解決網站出現 "mixed content warnings" 的問題,這種問題通常是...。
Cloudflare SSL by Weslink 》CloudFlare 無法簡單地使用 SSL,需要進行微小的修改,以避免重定向迴圈。此外掛可讓您的 WordPress 網站準備使用 CloudFlare SSL,並避免 SSL 無限迴圈問題...。
Easy Cloudflare Turnstile – Privacy friendly reCAPTCHA alternative for WordPress, Contact Form 7, WPForms, BuddyPress, Elementor 》Cloudflare Turnstile for WordPress、WooCommerce、Contact Form 7、BuddyPress、WPForms 等外掛,是 WordPress 上最佳的 reCAPTCHA 可替代方案。, , “研究...。
Servebolt Optimizer 》Servebolt Optimizer 外掛程式新增了實現 Servebolt WordPress 的最佳實踐的功能。其中包括數據庫優化、錯誤日誌審查、自動緩存清除、自動圖像優化和調整大小...。
GeoTargeting Lite – WordPress Geolocation 》這個針對 WordPress 的地理定位外掛是基於 Maxmind GeoIP2 資料而建立的,讓您能夠基於使用者所在的國家建立動態內容。, 透過簡單的短碼,您可以指定哪些國家...。
CloudGuard 》使用雲端和全球 CDN 的力量來限制您的登入頁面訪問。, CloudGuard 為您的登入頁面帶來全球和雲端驅動的保護。使用 Cloudflare 的免費地理位置服務,此超輕量...。
Cache Warmer 》如果您已設置任何緩存解決方案,請瀏覽您的 WordPress 網站以熱門(建立)緩存。, 設置, , 配置緩存熱身頁面和深度;, 選擇將所有公共站點文章(任何類型)添...。
App for Cloudflare® 》總結:, - 不需要成為網絡管理員或開發人員,也能解鎖Cloudflare的高級功能, - 直接在300多個全球Cloudflare數據中心中緩存HTML頁面,使網站更快速, - 可管理...。
Cloudflare Page Cache 》與「Edge Cache HTML」Cloudflare Worker 整合,將匿名使用者(未登入)生成的 HTML 快取到邊緣,從而實現巨大的性能提升,尤其適用於較慢的主機。。