Title: Secure Owl Firewall Author: Sajber Sove Published: 10 красавіка, 2026 Last modified: 3 мая, 2026 --- Пошук плагінаў ![](https://ps.w.org/secure-owl-firewall/assets/banner-772x250.png?rev=3503274) ![](https://ps.w.org/secure-owl-firewall/assets/icon-256x256.png?rev=3503274) # Secure Owl Firewall Аўтар: [Sajber Sove](https://profiles.wordpress.org/sajbersove/) [Спампаваць](https://downloads.wordpress.org/plugin/secure-owl-firewall.1.0.9.zip) * [Падрабязнасці](https://bel.wordpress.org/plugins/secure-owl-firewall/#description) * [Водгукі](https://bel.wordpress.org/plugins/secure-owl-firewall/#reviews) * [Ўсталёўка](https://bel.wordpress.org/plugins/secure-owl-firewall/#installation) * [Распрацоўка](https://bel.wordpress.org/plugins/secure-owl-firewall/#developers) [Падтрымка](https://wordpress.org/support/plugin/secure-owl-firewall/) ## Апісанне Secure Owl Firewall is a fast, lightweight firewall plugin with an advanced rule engine featuring PCRE pattern matching, a transformation pipeline, and JSON-based rule configuration. Key features: * JSON-based rules — 100+ default rules covering SQLi, XSS, RCE, LFI, SSRF, Log4Shell, and more * Transformation pipeline — URL decode, lowercase, normalize path, remove whitespace, HTML entity decode, trim * Inspection targets — REQUEST_URI, QUERY_STRING, USER_AGENT, REFERER, COOKIE, and POST * MU-Plugin loader — runs before regular plugins for earliest protection * Rate limiting — optional transient-based IP and subnet banning * Login protection — PIN field and honeypot to block brute-force attacks * IP whitelist — CIDR/subnet support for both IPv4 and IPv6 * IP blacklist — CIDR/subnet support for both IPv4 and IPv6 * Per-rule toggle — disable individual rules from the admin panel without editing files * File-based logging — 64MB cap with auto-rotation and protected storage * Log retention — configurable policy for GDPR compliance * IP anonymization — masks user IP addresses for enhanced privacy and GDPR compliance ### Filter Hooks * `sswaf_ip_whitelist` — array of IPs to bypass the firewall * `sswaf_ip_blacklist` — array of IPs to block before any rules run * `sswaf_trusted_proxies` — array of trusted proxy IPs for X-Forwarded-For * `sswaf_post_scanning` — enable POST data inspection (default: true) * `sswaf_rules_file` — path to the rules JSON file * `sswaf_log_file` — path to the log file * `sswaf_log_max_size` — maximum log size in bytes * `sswaf_header_status` — HTTP status header for blocked requests * `sswaf_before_block` — action hook fired before blocking a request * `sswaf_rate_limit_ip_threshold` — override IP hit threshold * `sswaf_rate_limit_ip_duration` — override IP ban duration * `sswaf_rate_limit_ip_window` — override IP counting window ## Ўсталёўка 1. Upload the `secure-owl-firewall` folder to `/wp-content/plugins/` 2. Activate through the Plugins menu 3. The MU-Plugin loader is installed automatically for early execution 4. Configure settings under Settings > Secure Owl Firewall ## Водгукі На гэты плагін няма водгукаў. ## Удзельнікі і распрацоўшчыкі “Secure Owl Firewall” is open source software. The following people have contributed to this plugin. Удзельнікі * [ Sajber Sove ](https://profiles.wordpress.org/sajbersove/) [Перакласці “Secure Owl Firewall” на вашу мову.](https://translate.wordpress.org/projects/wp-plugins/secure-owl-firewall) ### Зацікаўлены ў распрацоўцы? [Праглядзіце код](https://plugins.trac.wordpress.org/browser/secure-owl-firewall/), праверце [SVN рэпазітарый](https://plugins.svn.wordpress.org/secure-owl-firewall/), або падпішыцеся на [журнал распрацоўкі](https://plugins.trac.wordpress.org/log/secure-owl-firewall/) па [RSS](https://plugins.trac.wordpress.org/log/secure-owl-firewall/?limit=100&mode=stop_on_copy&format=rss). ## Журнал змяненняў #### 1.0.0 * Initial release. #### 1.0.1 * Updated security rules. * Updated log file cap to 24MB. #### 1.0.2 * Added IP whitelist with CIDR/subnet support (IPv4 + IPv6). * File-based storage for zero database overhead. * Settings UI with validation. #### 1.0.3 * Removed metadata from a JSON rules file. * Small CSS admin tweak. #### 1.0.4 * Added configurable log retention policy to automatically purge old data for GDPR compliance. * Added option to anonymize user IP addresses, enhancing privacy and GDPR compliance. * Rework plugin update mechanism. * Improved coding standards to align better with WordPress guidelines. #### 1.0.5 * Updated log file cap to 64MB. * Fixed a small bug in admin panel log viewer. #### 1.0.6 * Added rate-limited PIN authentication to the login page to mitigate brute-force attacks. * Added a honeypot trap to the login form to catch unsophisticated bots. #### 1.0.7 * Removed a few overly aggressive rules. #### 1.0.8 * Added IP blacklist with CIDR/subnet support (IPv4 + IPv6). #### 1.0.9 * Fixed a small bug in log viewer. ## Мета * Версія **1.0.9** * Апошняе абнаўленне **3 дні таму** * Актыўных установак **Менш за 10** * Версія WordPress ** 5.0 або вышэй ** * Правераны да версіі **6.9.4** * Версія PHP ** 7.4 або вышэй ** * Мова * [English (US)](https://wordpress.org/plugins/secure-owl-firewall/) * Тэгі * [firewall](https://bel.wordpress.org/plugins/tags/firewall/)[protection](https://bel.wordpress.org/plugins/tags/protection/) [security](https://bel.wordpress.org/plugins/tags/security/)[WAF](https://bel.wordpress.org/plugins/tags/waf/) * [Пашыраны прагляд](https://bel.wordpress.org/plugins/secure-owl-firewall/advanced/) ## Ацэнкі Пакуль яшчэ няма водгукаў. [Your review](https://wordpress.org/support/plugin/secure-owl-firewall/reviews/#new-post) [See all reviews](https://wordpress.org/support/plugin/secure-owl-firewall/reviews/) ## Удзельнікі * [ Sajber Sove ](https://profiles.wordpress.org/sajbersove/) ## Падтрымка Ёсць што сказаць? Патрэбна дапамога? [Перайсці да форуму падтрымкі](https://wordpress.org/support/plugin/secure-owl-firewall/)