If you have access for editing an .htaccess file on a server, paste the rules below for protection against DDoS on your WordPress site. The rules that you are applying may keep you from entering as well. If that happens, log in first to the Dashboard (and be sure to accept cookies while doing so) then amend with the rules that I have provided.
# BEGIN Protection against DDoS
RewriteEngine On
RewriteCond %{REQUEST_URI} ^/wp-login.php
RewriteCond %{REQUEST_METHOD} POST
RewriteCond %{HTTP_COOKIE} !paddos_bQvPk=1 [NC]
RewriteCond %{REQUEST_URI} !^/\.well-known/cpanel-dcv/[0-9a-zA-Z_-]+$
RewriteCond %{REQUEST_URI} !^/\.well-known/pki-validation/(?:\ Ballot169)?
RewriteCond %{REQUEST_URI} !^/\.well-known/pki-validation/[A-F0-9]{32}\.txt(?:\ Comodo\ DCV)?$
RewriteRule ^(.*)$ http://127.0.0.1/ [R,L]
# END Protection against DDoS
Stephan Pringle
Latest posts by Stephan Pringle (see all)
- ADFS/CAS Time out - Thursday, September 19, 2024