前言介紹
- 這款 WordPress 外掛「ThreatPoint IP Reputation」是 2020-03-04 上架。
- 目前有 10 個安裝啟用數。
- 上一次更新是 2024-04-23,距離現在已有 376 天。超過一年沒更新,安裝要確認版本是否可用。以及後續維護問題!
- 外掛最低要求 WordPress 3.5.2 以上版本才可以安裝。
- 外掛要求網站主機運作至少需要 PHP 版本 5.4 以上。
- 有 3 人給過評分。
- 還沒有人在論壇上發問,可能目前使用數不多,還沒有什麼大問題。
外掛協作開發者
外掛標籤
ip | Tor | xmlrpc | wp-admin | reputation |
內容簡介
此外掛透過利用ThreatPoint IP聲譽服務所提供的IP聲譽資料,保護WordPress網站免受不必要的憎惡存取嘗試。此外掛呼叫了ThreatPoint API的restAPI呼叫,消耗回應,根據此外掛中的配置選項進行操作。這允許在頁面(wp-admin和自定義頁面)前放置IP聲譽資料,而不會中斷正常的存取。需要一個API KEY才能與此restAPI交流。
此外掛僅傳遞IP信息,不傳遞其他PII。IP地址在ThreatPoint IP聲譽服務中進行了聚合數據分析,並返回帶有地理位置信息的風險分數到該外掛,然後在該外掛中設置的簡單規則決定流量是否應繼續正常或重定向到所選信息URL(通過外掛設置設置)。IP地址存儲在IP聚合數據中,作為聯盟的一部分使用。不存儲其他來源網站等數據。僅保留IP地址和地理位置信息,以及與請求相關的日期,時間和風險分數。
此外掛檢測來自以下來源的活動和IP聲譽:
-Tor出口節點流量
-代理(付費)
-代理(免費)
-VPN(付費)
-VPN(免費)
-已知惡意行為(聯盟)
-暴力破解檢測
-可在此處查看API文檔:documentation
提供風險基於決策透過配置以允許管理員為其站點選擇正確的流程。從在ThreatPoint網絡上觀察到的活動創建的惡意IP聯盟模型。偵測和封鎖機器人、惡意軟體、木馬和聚合器以及惡意的人員流量。
- API密鑰-需要API密鑰才能訪問IP聲譽服務。country Blacklist-2字符ISO國家代碼csv格式。在此列表中的國家代碼會導致來自那些國家的IP地址發出重定向。允許您阻止來自國家的存取
- country Whitelist - 2字符ISO國家代碼csv格式。在此列表中的國家代碼將導致僅允許來自這些國家的IP地址。所有其他人都將被重定向。
原文外掛簡介
This plugin protects WordPress Sites from unwanted malicious access attempts by leveraging IP reputation data provided by the ThreatPoint IP reputation service.
External Service
This plugin allows administrators to protect their WordPress Sites from unwanted access attempts by leveraging IP reputation data provided by the ThreatPoint IP reputation service. This plugin invokes a restAPI call to the ThreatPoint API, consumes the response and acts based on configuration options in the plugin. This allows ip reputation data to be placed in front of pages (wp-admin and custom pages for example) – without interrupting normal access.
To communicate with the restAPI an API KEY is required from ThreatPoint.
The plugin calls the rest API (requires an API KEY) at this ThreatPoint api endpoint
The rest API is only passed the IP address from the client or X-Forwarded-For address(es) is present.
This external service is called during any login attempts to the admin page. The plugin allows any page to be protected by simply entering the slug name on the setting page in the correct field (comma separated). Any custom page can be protected in this manner.
An API key is required to utilise the service, although the plugin will operate without one it will not be able to pass the IP or call any data from the API. Your pages are NOT protected without a valid API key.
Privacy Policy
The privacy policy for the api services is viewable here privacy policy
This plugin only passes IP information – no other PII is transferred. The IP address is analysed across the aggregated data within the ThreatPoint IP reputation service and a risk score with geo location information is returned to the plugin. Simple rules within the plugin dictate whether traffic should be allowed to continue as normal or be redirected to an information URL of your choice (set by through the plugin settings). The IP address is stored in the IP aggregated data and used as part of the consortium. No other data such as originating website is stored. Only the IP address and geo location information is held, with date, time and risk scores associated with the request.
Plugin Features
Detects activity and IP reputation from the following sources:
Tor exit node traffic
Proxy (paid)
Proxy (free)
VPN (paid)
VPN (free)
Known Malicious Behaviour (Consortium)
Brute force detection
API Documentation is available here: documentation
Video is here
Special Features
Provide risk based decisions through configuration to allow an administrator the correct flow for their site.
Consortium model of malicious IP’s created from activity seen across the ThreatPoint network
Detect and block bots, malware, trojans and aggregators as well as malicious human traffic
Configuration Items
API Key – An API key is required to access the IP reputation service as explained above – ([email protected])
Country Blacklist – 2 Character ISO country code csv format. Country codes in this list will cause IP addresses from those countries to issue a redirection. Allows you to block access from countries
Country Whitelist – 2 Character ISO country code csv format. Country codes in this list will cause only IP addressed from these countries to be allowed. All others will be redirected. Allow all from UK for example.
Country Blacklist is evaluated first – it makes little sense to have both blacklists and whitelists set although it is a supported option due to demand.
Redirection URL – The web page you wish traffic to be redirected to – please feel free to use Redirection URL
Reject IP Risk >= – Redirect IP risk scores marked as Consider or High. Allow low risk only if consider is selected. The risk score is created by the IP reputation service based on the source, location, previous use and history across the IP consortium (velocity, reputation, tor, vpn, proxy)
Pages to protect – a comma separated list of custom pages that you want to use the IP reputation service
Disable XMLRPC endpoint by adding entry to .htaccess
Add malicious IP’s directly to .htaccess to protect wp-login from brute force
Localization
English (default) – only language currently supported
Feedback
Many thanks for taking the time to look at the plugin
Drop the ThreatPoint team a line @threatuk on Twitter
Email questions or suggestions via ([email protected])
Api key requests via [email protected]
Translations
English – default, currently the only language supported
Contributors & Developers
The ThreatPoint team are often asked to investigate attacks on web sites and other services. More often than not these attacks begin from IP addresses that should be considered before access is granted. The IP reputation API provides the intelligence to protect such services, simply and effective. The WordPress plugin framework allows this to be easily introduced into WordPress sites as an additional layer of protection.
This is not a silver bullet, but it is a useful deterrent. Best efforts to redirect IP addresses based on IP reputation are made. The service should be used in conjunction with other layers of detection and with defined authentication and access rules as part of an overall security policy.
ThreatPoint UK also provide email verification, device reputation, dark web monitoring and password monitoring services as part of the API service layer. Please contact [email protected] to find out more about these additional services.
Credits
Many credits go to the fraud and analytics team at ThreatPoint UK and the team behind the API services
Credits to numerous wordpress tutorials used to understand the plugin creation process. notably this article https://www.sitepoint.com/real-world-example-wordpress-plugin-development/
各版本下載點
- 方法一:點下方版本號的連結下載 ZIP 檔案後,登入網站後台左側選單「外掛」的「安裝外掛」,然後選擇上方的「上傳外掛」,把下載回去的 ZIP 外掛打包檔案上傳上去安裝與啟用。
- 方法二:透過「安裝外掛」的畫面右方搜尋功能,搜尋外掛名稱「ThreatPoint IP Reputation」來進行安裝。
(建議使用方法二,確保安裝的版本符合當前運作的 WordPress 環境。
release2.2 | release2.3 | release2.5 | release2.7 | release-1.2 | release-1.3 | release-1.4 | release-1.5 | release-1.6 | release-1.7 | release-1.8 | release-1.9 | release-2.0 | release-2.1 | release-2.4 |
延伸相關外掛(你可能也想知道)
Review Stream 》使用此外掛需要:, , 擁有開啟評論監控功能的 Grade.us 帳戶, 已經被批准使用 API,並知道您的 API Token, 在 WordPress 網站中添加 [reviewstream] 短碼, 確...。
Guest Suite 》顯示您在 guest-suite.com 的評論。, 可用語言, , 法語, 英語, 西班牙語, 。
Reviews UP 》Reviews Up 是任何類型企業的極致聲譽建立者。它提供一個簡單易用的控制板,內含一套強大的工具,能讓您在相關渠道中引起、回應和行銷您的評論。, 與 Google ...。
ReviewsTap 》Reviews Tap幫助企業在網路平台上收集、監控和管理評論。, 一般功能, , 自動詢問新訂閱者的評分, 向現有訂閱者批量詢問評分, 透過簡碼或小工具在網站上顯示評...。
ViperRep 》ViperRep是一款WordPress的聲譽管理外掛,可讓您追蹤在網絡上提到您的品牌、產品或甚至您自己的名字。它在WordPress儀表板上添加了一個簡單的小部件,讓您可...。
StackOverflow.com Reputation Widget 》StackOverflow.com 聲望 WordPress 外掛是一款側欄小工具,可顯示來自 StackOverflow.com 的使用者資訊。您必須從 WordPress 小工具中新增這個小工具,輸入您...。
Shift8 IP Intel 》這個外掛可以從getipintel.net 建立IP位址信譽分數。IP信譽數據會使用OpenSSL進行加密,並存儲在_SESSION變量中。您可以閱讀API文檔以了解GetIPIntel服務的運...。