Keywords to Boost your Cloudflare Firewall

Manuel Campos

In this post, I will be sharing keywords that can be used to enhance the security of your website through the Cloudflare firewall.

Cloudflare is a powerful security and performance platform that provides a range of features to protect your website from threats such as DDoS attacks, malware, and more.

By adding these specific keywords to your Cloudflare firewall rules, you can improve the overall security of your website

So, let’s get started and learn how to boost the security of your website with Cloudflare!


Blocking Access to PHP Files

If you have a static site with informational content, you don’t really need to let automated traffic or real visitors check PHP files.

I block access to all PHP files so I am blocking some of the worst attacks that are made on a daily basis to web apps.

If you block access to PHP files, you can stop worrying about most reports from security plugins.

If you get an email like this, you know that your site won’t be vulnerable to these types of attacks:

Block Access to PHP files

This is another example of an attack that would be completely blocked if you blocked access to all PHP files

Blocking access to PHP files will also reduce Brute Force attacks to Zero.

Blocking File Extensions

Bots, or automated software programs, are often used to scan through websites in search of specific types of files.

One common tactic employed by these bots is to scan for file extensions such as .rar and .zip, as these types of files are often used for backups and other important files.

When a bot encounters a .rar or .zip file, it will typically attempt to extract the contents of the file in order to access the files inside.

These are some of the file extensions that you should add to your CloudFlare Firewall Rules

.zip.tar
.gz.rar
.bak.iso
.dat.db
.sql.tgz
.7z.bz2
.zlib.bk

Keywords you should Block

Bots can also use other techniques to try and find important files. For example, they may scan for specific keywords or phrases in file names or contents.

Make sure you can safely block these keywords before adding them to your Firewall.

KeywordsDirectoryWith Slash
wamp/dev//mariadb
xampp/test//db
staging/network//backup
execute/downloader//command
echo/wordpress//cmd

More Keywords

These are some lists that are used to find exploits on WordPress sites, you can’t include them all on your Firewall rules but you can

More about WordPress Security

These are other WordPress security posts that you also might want to check out.

  1. How to Block User Agents in WordPress using CloudFlare
  2. How to Block Bad Queries with Cloudflare Firewall Rules
  3. WordPress Security: Block or Challenge ASNs
  4. How to Secure your Login Page using CloudFlare
  5. WordFence Review: Love it or Leave it
  6. Protect your WordPress Site with Cloudflare Firewall Rules
Manuel Campos, English Professor

Manuel Campos

I am José Manuel. I am writing about things I know and things that I am learning about WordPress. I hope you find the content of this blog useful.

WP SURFER

home

about

privacy

contact

© 2024 WP SURFER • Made with Love in Costa Rica