描述

Prevent unwanted traffic incidents that might result in site outages and billing overages. WordPress plugin that blocks IP and bots categorized as harmful, resulting in heavy server loads from frequently crawled pages, or utilized in vulnerability/security breach scans.

Usage instructions for Integrating AbuseIPDb

Obtain your free API key from AbuseIPDB ().
Install and activate the plugin via your WordPress dashboard.
Configure the plugin settings by adding your API key and setting threat thresholds.

Firewall

Manually add an IP to be blocked
Manually add Bots/User-Agents/Scrappers to prevent site visit
Manually add an IP to be whitelisted on the login page
Automatically block malicious traffic thru analysis on an hourly basis
Automatically block excessive login attempts with configurable threshold
Automatically block excessive visits from an incremented query that would bust the CDN cache

WP-CLI commands

Example
wp jam block 127.0.0.10
wp jam unblock 127.0.0.10
wp jam topip

Pantheon.io

Prevent traffic overages due to excessive visits from malicious traffic. The plugin can be used on sites hosted on Pantheon.io and no additional symlinks required.

Pantheon terminus command

terminus wp sitename.env -- jam block 127.0.0.1
terminus wp sitename.env -- jam unblock 127.0.0.1

屏幕截图

Admin UI
Block Bots
Whitelist IP
AbuseIPDB Integration
Settings
Reports – Top IP
Reports – Top User Agents

安装

Download the plugin via WordPress.org page
Upload the compress archive through the ‘Plugins > Add New > Upload’ screen in your WordPress dashbboard
Activate the plugin through the ‘Plugins’ menu in WordPress

评价

Than_sad 2025 年 3 月 27 日

Simple and basic plugin to automatize the control of abusive access to your WordPress. Simple because isn’t modifying your Wordpress too much, adding hundred of not needed functions or forwarding your data and control to cloud services outside your domain. Basic because do just what you need to control the access to your Wordpress. If you are tired of check your apache/nginx access log, check the abusive IPs activity on AbuseIPDB and block the access to them throw your .htaccess. This plugin does it automatically for you. Just get your API Key (on AbuseIPDB), setup the confidence of abuse threshold from AbuseIPDB and the plugin will check the IPs and add to the IP block list automatically. Also the support from the plugin author is fast and resolutive. And the best… it’s free. No limited functions or premium versions. The only thing missing is the ability to control the access by hostname, to be the perfect tool.

阅读所有1条评价

贡献者及开发者

「Traffic Jammer」是开源软件。以下人员对此插件做出了贡献。

Carey

帮助将「Traffic Jammer」翻译成简体中文。

对开发感兴趣吗?

您可以浏览代码，查看SVN仓库，或通过RSS订阅开发日志。

更新日志

1.4.9

disallow network activation on a multisite

1.4.8

fix php error during plugin deactivation

1.4.7

fix bug on the report

1.4.4

option to disable limit failed login
show abuse score on the reports if Abusedb API is present

1.4.3

version bump, tested for WordPress version 6.7.2

1.4.0

added threshold 50 and 60 options
tested working with 6.5.3

1.3.3

revised readme.txt
tested working on 6.5

1.3.0

cleanup code

1.2.6

readme and tags formatting

1.2.5

Tested to work with version 6.4.3

1.2.4

Tested to work with version 6.4.1

1.2.3

Tested to work WordPress version 6.3.2

1.2.2

Tested to work WordPress version 6.3.1

1.2.1

fixed PHP warnings when running cli commands
added for the commands topip

1.1.2

fixed deprecated warnings

1.1.1

prevent selection or entering 0 to the login threshold that would result in lockout

1.1.0

added 5 days in the selection of retention period of logs

1.0.10

fix bug on detecting real IP when domain is using Cloudflare proxy

1.0.9

fix bug on updating abuseipdb key and options
added checking of error when calling abuseipdb endpoint

1.0.8

Settings for AbuseIPDB has a separate tab
Added threshold field for minimal abuse score

1.0.7

added AbuseIPDB feature to block malicious traffic

1.0.6

added feature to automatically block IPs which have failed login
option to limit the number of retries of failed login before it would be blocked

1.0.5

added blocking for cache busting URL query strings

1.0.4

added schedule event for log trimming
added setting for log retention

1.0.3

added database version log for future updates

1.0.2

added reports page

1.0.1

tabbed content
show current IP
simple instructions

1.0.0

2022-10-07
Stable release approved by WordPress.org

描述