Global blocking of wpscan enumerate users
Wordpress have vulnerability of enumeration users with a simple wpscan script. Since I have many pages on Wordpress on my server, I would like to block this. Of course, this is simply done by adding a few lines to the .htaccess file on a particular server:
But I would like to do it globally. I have tried in the cpanel in Service Configuration> Apache Configuration> Include Editor. Unfortunately it did not work. So how can I add these few lines globally to all accounts on cpanel?
RewriteCond %{QUERY_STRING} ^author=([0-9]*)
RewriteRule .* https://127.0.0.1:8080/? [L,R=302]
But I would like to do it globally. I have tried in the cpanel in Service Configuration> Apache Configuration> Include Editor. Unfortunately it did not work. So how can I add these few lines globally to all accounts on cpanel?
-
Hello, The following document describes how to setup a custom configuration file and apply it to all virtual hosts: Modify Apache Virtual Hosts with Include Files - EasyApache 4 - cPanel Documentation Let us know if this helps. Thank you. 0 -
Hello, The following document describes how to setup a custom configuration file and apply it to all virtual hosts: Apache Configuration> Include Editor", but "manual" version of this?
0 -
Isn't this the same as "Service Configuration> Apache Configuration> Include Editor", but "manual" version of this?
No, the "Include Editor" option is for changes outside of the VirtualHost directives. The documentation I provided is for changes within the Virtual Hosts. Thank you.0 -
hi After 3 years, we are currently 09-2020, is the route still valid? I tried to create / edit: /etc/apache2/conf.d/userdata/includename.conf , and the path or file does not exist 0
Please sign in to leave a comment.
Comments
4 comments