Genel Siber Güvenlik

CloudFlare Firewall ile WordPress Güvenliği Nasıl Sağlanır?

18 Haziran 2020

CloudFlare Firewall ile WordPress Güvenliği Nasıl Sağlanır?

Dün site genelinde uygulanması gereken CloudFlare Firewall Kurallarına değinmiştik. Bugünse daha spesifik olarak CloudFlare kullanarak WordPress bir web sitesinin temel güvenliği nasıl sağlanır onu görücez.

  • Rule Name: General Content Protection
  • Rule Action: Block
(http.request.uri.query contains "author_name=") or 
(http.request.uri.query contains "author=" and not http.request.uri.path contains "/wp-admin/export.php") or 
(http.request.full_uri contains "wp-config.") or 
(http.request.uri.path contains "/wp-json/") or 
(http.request.uri.path contains "/wp-content/" and http.request.uri.path contains ".php") or 
(http.request.uri.path contains "phpmyadmin") or 
(http.request.uri.path contains "/phpunit") or 
(http.request.full_uri contains "<?php") or 
(http.cookie contains "<?php") or 
(http.request.full_uri contains "../") or (http.request.full_uri contains "..%2F") or 
(http.request.full_uri contains "passwd") or 
(http.request.uri contains "/dfs/") or 
(http.request.uri contains "/autodiscover/") or 
(http.request.uri contains "/wpad.") or 
(http.request.full_uri contains "webconfig.txt") or 
(http.request.full_uri contains "vuln.") or 
(http.request.uri.query contains "base64") or 
(http.request.uri.query contains "<script") or (http.request.uri.query contains "%3Cscript") or 
(http.cookie contains "<script") or (http.referer contains "<script") or 
(upper(http.request.uri.query) contains " UNION ALL ") or (upper(http.request.uri.query)contains " SELECT ") or 
(http.request.uri.query contains "$_GLOBALS[") or (http.request.uri.query contains "$_REQUEST[") or (http.request.uri.query contains "$_POST[")

  • Rule Name: WordPress İmportant Areas
  • Rule Action: Block
((http.request.uri.path contains "/xmlrpc.php") or (http.request.uri.path contains "/wp-admin/" and not http.request.uri.path contains "/wp-admin/admin-ajax.php" and not http.request.uri.path contains "/wp-admin/theme-editor.php"))

  • Rule Name: Login Protection
  • Rule Action: Captcha
(http.request.uri.path contains "/wp-login.php")

  • Rule Name: Unwanteds
  • Rule Action: Block
(cf.threat_score gt 15) or 
(http.user_agent contains "/bin/bash") or 
(http.user_agent contains "[email protected]") or 
(http.user_agent contains "eval(") or 
(http.user_agent contains "Go-http-client/") or 
(http.user_agent contains "Nikto") or 
(http.user_agent contains "Nimbostratus") or 
(http.user_agent contains "python-requests") or 
(http.user_agent contains "Scrapy/") or 
(http.user_agent contains "WebDAV-MiniRedir") or 
(http.user_agent contains "WinHttp.WinHttpRequest") or 
(http.user_agent contains "ZmEu")

  • Rule Name: Hotlink Protection
  • Rule Action: Block

Bu kuralı kullanırken dikkatli olun bütün site içeriğini yanlışlıkla engelleyebilirsiniz.

not (http.referer contains "mertcangokgoz.com" or http.referer eq "cdn.mertcangokgoz.com" or http.referer eq "www.cloudflare.com")

  • Rule Name: Port Block
  • Rule Action: Block
(http.host eq "mertcangokgoz.com") and not cf.edge.server_port in {80 443}

  • Rule Name: WordPress Admin IP Whitelist
  • Rule Action: Block
(not ip.src in {1.1.1.1/32} and lower(http.request.uri.path) contains "/wp-admin" and lower(http.request.uri.path) contains "/wp-login.php")

Bunların hemen ardından CloudFlare Page rules kısmını kullanıp bir kaç değişiklik yapacağız.

cloudflare page rules, cloudflare sayfa kuralları, cloudflare ince ayarlar

wp-admin alanı için aşağıdaki gibi ayarlayın.

cloudflare wp admin örnek kural, cloudflare page rules wp-admin example rule

site geneli için cache ayarlayıp konuyu kapatıyoruz.

cloudflare cache settings, cloudflare önbellek ayarları, cloudflare güvenlik ayarları, cloudflare wordpress güvenliği
0 0 vote
Article Rating
Subscribe
Bildir
0 Yorum
Inline Feedbacks
View all comments
0
Would love your thoughts, please comment.x
()
x