0
WordPress插件Sucuri安全已通知随机IP正试图登录到我的网站。我的.htaccess被设置为拒绝所有不是我们的IP:WordPress插件报告绕过htaccess拒绝规则IP
<Files wp-login.php>
order deny,allow
deny from all
allow from OUR.SPECIFIC.IP.ONLY
</Files>
<Files 403.shtml>
order allow,deny
allow from all
</Files>
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase/
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPress
IP是否能绕过规则?如何以及如何阻止它?