{"id":232841,"date":"2023-01-29T12:18:00","date_gmt":"2023-01-29T09:18:00","guid":{"rendered":"https:\/\/wordpress.mediadoma.com\/?p=232841"},"modified":"2023-02-01T13:22:37","modified_gmt":"2023-02-01T10:22:37","slug":"kuidas-kaitsta-oma-wordpressi-sisselogimist-brute-force-ruennakute-eest-lihtne-laehenemine","status":"publish","type":"post","link":"https:\/\/wordpress.mediadoma.com\/et\/kuidas-kaitsta-oma-wordpressi-sisselogimist-brute-force-ruennakute-eest-lihtne-laehenemine\/","title":{"rendered":"Kuidas kaitsta oma WordPressi sisselogimist brute-force r\u00fcnnakute eest \u2013 lihtne l\u00e4henemine?"},"content":{"rendered":"<p>WordPressi ajaveebi administraatori armatuurlauale sisselogimiseks on fail <strong>wp-login.php<\/strong>, mida k\u00fclastada. Paljud r\u00e4mpspostisaatjad kasutavad paroole j\u00f5hkralt j\u00f5uliselt, kuni neil on need \u00f5iged. See mitte ainult ei sea ohtu teie ajaveebi turvalisust, vaid kulutab ka liikluse ribalaiust.<\/p>\n<p>V\u00f5ite vaadata oma k\u00fclastuste logi ja <a href=\"https:\/\/helloacm.com\/how-to-ban-specified-ips-in-apache2-server\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">keelata teatud IP<\/a> -d, kuid see lahendus ei pruugi olla \u00fcldine ja t\u00f5hus, kui r\u00fcnnakud p\u00e4rinevad mitmest\/hajutatud IP-st, nt DDOS-ist. J\u00e4rgmine lahendus on lihtne ja samas v\u00f5imas\/t\u00f5hus. See toimib <strong>faili wp-login.php peitmisega<\/strong> v\u00f5i lisalukuga, mida teate ainult teie.<\/p>\n<p>L\u00e4henemisviis on redigeerida faili wordpress <a href=\"https:\/\/wordpress.mediadoma.com\/et\/kuidas-teatud-postitustel-reklaamid-keelata\/\" title=\"functions.php\">functions.php<\/a> (eelistatavalt lapseteema mallikaustas <a href=\"https:\/\/wordpress.mediadoma.com\/et\/wordpressi-lapseteema-ainsad-asjad-mida-pead-teadma\/\" title=\")\">)<\/a> ja lisada j\u00e4rgmised <a href=\"https:\/\/helloacm.com\/how-to-check-if-your-php-code-is-64-bit\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">PHP-koodi<\/a> read :<\/p>\n<pre><code>function login_protection(){ \u00a0\n\u00a0 \u00a0 if($_GET['secret'] != 'helloacm') header('Location: &lt;a class=\"vglnk\" target=\"_blank\" href=\"https:\/\/helloacm.com\" rel=\"nofollow\"&gt;&lt;span&gt;https&lt;\/span&gt;&lt;span&gt;:\/\/&lt;\/span&gt;&lt;span&gt;helloacm&lt;\/span&gt;&lt;span&gt;.&lt;\/span&gt;&lt;span&gt;com&lt;\/span&gt;&lt;\/a&gt;'); \u00a0\n}\nadd_action('login_enqueue_scripts','login_protection'); \u00a0<\/code><\/pre>\n<p>Lihtsalt salvestage fail ja j\u00e4rgmine kord, kui soovite oma armatuurlauale sisse logida, peate seda nimetama j\u00e4rgmiselt:<\/p>\n<pre><code>\/wp-login.php?secret=helloacm<\/code><\/pre>\n<p>V\u00f5tme ja v\u00e4\u00e4rtuse paari saate vastavalt oma lemmikule muuta. Kui salav\u00e4\u00e4rtusi ei edastata, suunatakse kasutajad avalehele, kuid selle paremaks muutmiseks v\u00f5iksite tagastada vea <a href=\"https:\/\/helloacm.com\/the-404-not-found-code-of-stackoverflow\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">404 \u2013 ei leitud<\/a>, mis v\u00f5ib r\u00fcndajaid segadusse ajada\/eksitada, nii et nad toore j\u00f5u r\u00fcnnakutest loobuvad.<\/p>\n<pre><code>function login_protection(){ \u00a0\n\u00a0 \u00a0 if($_GET['secret'] != 'helloacm') {\n\u00a0 \u00a0 \u00a0 \u00a0 header($_SERVER['SERVER_PROTOCOL']. ' 404 Not Found', true, 404);\n\u00a0 \u00a0 \u00a0 \u00a0 exit(\"&lt;!DOCTYPE HTML PUBLIC \"-\/\/IETF\/\/DTD HTML 2.0\/\/EN\"&gt;rn&lt;html&gt;&lt;head&gt;rn&lt;title&gt;404 Not Found&lt;\/title&gt;rn&lt;\/head&gt;&lt;body&gt;rn&lt;h1&gt;Not Found&lt;\/h1&gt;rn&lt;p&gt;The requested URL \". $_SERVER['SCRIPT_NAME']. \" was not found on this server.&lt;\/p&gt;rn&lt;\/body&gt;&lt;\/html&gt;\");\n\u00a0 \u00a0 }\n}\nadd_action('login_enqueue_scripts','login_protection'); \u00a0<\/code><\/pre>\n<p><div id=\"PostUnique_PostSource\" style=\"padding-top: 50px\">:  <a target=\"_blank\" rel=\"noopener nofollow\" href=\"\/\/helloacm.com\" class=\"external external_icon\">helloacm.com<\/a><\/div><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Kuidas kaitsta oma WordPressi sisselogimist brute-force r\u00fcnnakute eest \u2013 lihtne l\u00e4henemine?<\/p>\n","protected":false},"author":1,"featured_media":224691,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wp_rev_ctl_limit":""},"categories":[833,894,1029,842,802,812,863],"tags":[1165],"class_list":["post-232841","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-juhend-algajatele","category-kood","category-ohutus","category-opetused","category-php-4","category-pistikprogrammid","category-wordpress-4","tag-affiai-et"],"_links":{"self":[{"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/posts\/232841","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/comments?post=232841"}],"version-history":[{"count":0,"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/posts\/232841\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/media\/224691"}],"wp:attachment":[{"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/media?parent=232841"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/categories?post=232841"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/et\/wp-json\/wp\/v2\/tags?post=232841"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}