Version Description
To upgrade BBQ, remove old version and replace with new version. Or just click "Update" from the Plugins screen and let WordPress do it for you automatically. Nothing else needs done.
Note: uninstalling/deleting the plugin via the WP Plugins screen results in the removal of all settings and email data from the WP database.
Download this release
Release Info
| Developer | specialk |
| Plugin |  BBQ: Block Bad Queries |
| Version | 20210719 |
| Comparing to | |
| See all releases | |
Code changes from version 20210211 to 20210719
- block-bad-queries.php +5 -5
- readme.txt +16 -10
block-bad-queries.php
CHANGED
|
@@ -9,9 +9,9 @@
|
|
| 9 |
Contributors: specialk, aldolat, WpBlogHost, jameswilkes, juliobox, lernerconsult
|
| 10 |
Donate link: https://monzillamedia.com/donate.html
|
| 11 |
Requires at least: 4.1
|
| 12 |
-
Tested up to: 5.
|
| 13 |
-
Stable tag:
|
| 14 |
-
Version:
|
| 15 |
Requires PHP: 5.6.20
|
| 16 |
Text Domain: block-bad-queries
|
| 17 |
Domain Path: /languages
|
|
@@ -37,7 +37,7 @@
|
|
| 37 |
|
| 38 |
if (!defined('ABSPATH')) die();
|
| 39 |
|
| 40 |
-
if (!defined('BBQ_VERSION')) define('BBQ_VERSION', '
|
| 41 |
if (!defined('BBQ_FILE')) define('BBQ_FILE', plugin_basename(__FILE__));
|
| 42 |
if (!defined('BBQ_DIR')) define('BBQ_DIR', plugin_dir_path(__FILE__));
|
| 43 |
if (!defined('BBQ_URL')) define('BBQ_URL', plugins_url('/block-bad-queries/'));
|
|
@@ -50,7 +50,7 @@ function bbq_core() {
|
|
| 50 |
|
| 51 |
$user_agent_array = apply_filters('user_agent_items', array('<', '%0a', '%0d', '%27', '%3c', '%3e', '%00', '0x00', '\/bin\/bash', '360Spider', 'acapbot', 'acoonbot', 'alexibot', 'asterias', 'attackbot', 'backdorbot', 'base64_decode', 'becomebot', 'binlar', 'blackwidow', 'blekkobot', 'blexbot', 'blowfish', 'bullseye', 'bunnys', 'butterfly', 'careerbot', 'casper', 'checkpriv', 'cheesebot', 'cherrypick', 'chinaclaw', 'choppy', 'clshttp', 'cmsworld', 'copernic', 'copyrightcheck', 'cosmos', 'crescent', 'cy_cho', 'datacha', 'demon', 'diavol', 'discobot', 'disconnect', 'dittospyder', 'dotbot', 'dotnetdotcom', 'dumbot', 'emailcollector', 'emailsiphon', 'emailwolf', 'eval\(', 'exabot', 'extract', 'eyenetie', 'feedfinder', 'flaming', 'flashget', 'flicky', 'foobot', 'g00g1e', 'getright', 'gigabot', 'go-ahead-got', 'gozilla', 'grabnet', 'grafula', 'harvest', 'heritrix', 'httrack', 'icarus6j', 'jetbot', 'jetcar', 'jikespider', 'kmccrew', 'leechftp', 'libweb', 'linkextractor', 'linkscan', 'linkwalker', 'loader', 'lwp-download', 'masscan', 'miner', 'majestic', 'md5sum', 'mechanize', 'mj12bot', 'morfeus', 'moveoverbot', 'netmechanic', 'netspider', 'nicerspro', 'nikto', 'nutch', 'octopus', 'pagegrabber', 'planetwork', 'postrank', 'proximic', 'purebot', 'pycurl', 'queryn', 'queryseeker', 'radian6', 'radiation', 'realdownload', 'remoteview', 'rogerbot', 'scooter', 'seekerspider', 'semalt', '(c99|php|web)shell', 'shellshock', 'siclab', 'sindice', 'sistrix', 'sitebot', 'site(.*)copier', 'siteexplorer', 'sitesnagger', 'skygrid', 'smartdownload', 'snoopy', 'sosospider', 'spankbot', 'spbot', 'sqlmap', 'stackrambler', 'stripper', 'sucker', 'surftbot', 'sux0r', 'suzukacz', 'suzuran', 'takeout', 'teleport', 'telesoft', 'true_robots', 'turingos', 'turnit', 'unserialize', 'vampire', 'vikspider', 'voideye', 'webleacher', 'webreaper', 'webstripper', 'webvac', 'webviewer', 'webwhacker', 'winhttp', 'wwwoffle', 'woxbot', 'xaldon', 'xxxyy', 'yamanalab', 'yioopbot', 'youda', 'zeus', 'zmeu', 'zyborg'));
|
| 52 |
|
| 53 |
-
$referrer_array = apply_filters('referrer_items', array('
|
| 54 |
|
| 55 |
//
|
| 56 |
|
| 9 |
Contributors: specialk, aldolat, WpBlogHost, jameswilkes, juliobox, lernerconsult
|
| 10 |
Donate link: https://monzillamedia.com/donate.html
|
| 11 |
Requires at least: 4.1
|
| 12 |
+
Tested up to: 5.8
|
| 13 |
+
Stable tag: 20210719
|
| 14 |
+
Version: 20210719
|
| 15 |
Requires PHP: 5.6.20
|
| 16 |
Text Domain: block-bad-queries
|
| 17 |
Domain Path: /languages
|
| 37 |
|
| 38 |
if (!defined('ABSPATH')) die();
|
| 39 |
|
| 40 |
+
if (!defined('BBQ_VERSION')) define('BBQ_VERSION', '20210719');
|
| 41 |
if (!defined('BBQ_FILE')) define('BBQ_FILE', plugin_basename(__FILE__));
|
| 42 |
if (!defined('BBQ_DIR')) define('BBQ_DIR', plugin_dir_path(__FILE__));
|
| 43 |
if (!defined('BBQ_URL')) define('BBQ_URL', plugins_url('/block-bad-queries/'));
|
| 50 |
|
| 51 |
$user_agent_array = apply_filters('user_agent_items', array('<', '%0a', '%0d', '%27', '%3c', '%3e', '%00', '0x00', '\/bin\/bash', '360Spider', 'acapbot', 'acoonbot', 'alexibot', 'asterias', 'attackbot', 'backdorbot', 'base64_decode', 'becomebot', 'binlar', 'blackwidow', 'blekkobot', 'blexbot', 'blowfish', 'bullseye', 'bunnys', 'butterfly', 'careerbot', 'casper', 'checkpriv', 'cheesebot', 'cherrypick', 'chinaclaw', 'choppy', 'clshttp', 'cmsworld', 'copernic', 'copyrightcheck', 'cosmos', 'crescent', 'cy_cho', 'datacha', 'demon', 'diavol', 'discobot', 'disconnect', 'dittospyder', 'dotbot', 'dotnetdotcom', 'dumbot', 'emailcollector', 'emailsiphon', 'emailwolf', 'eval\(', 'exabot', 'extract', 'eyenetie', 'feedfinder', 'flaming', 'flashget', 'flicky', 'foobot', 'g00g1e', 'getright', 'gigabot', 'go-ahead-got', 'gozilla', 'grabnet', 'grafula', 'harvest', 'heritrix', 'httrack', 'icarus6j', 'jetbot', 'jetcar', 'jikespider', 'kmccrew', 'leechftp', 'libweb', 'linkextractor', 'linkscan', 'linkwalker', 'loader', 'lwp-download', 'masscan', 'miner', 'majestic', 'md5sum', 'mechanize', 'mj12bot', 'morfeus', 'moveoverbot', 'netmechanic', 'netspider', 'nicerspro', 'nikto', 'nutch', 'octopus', 'pagegrabber', 'planetwork', 'postrank', 'proximic', 'purebot', 'pycurl', 'queryn', 'queryseeker', 'radian6', 'radiation', 'realdownload', 'remoteview', 'rogerbot', 'scooter', 'seekerspider', 'semalt', '(c99|php|web)shell', 'shellshock', 'siclab', 'sindice', 'sistrix', 'sitebot', 'site(.*)copier', 'siteexplorer', 'sitesnagger', 'skygrid', 'smartdownload', 'snoopy', 'sosospider', 'spankbot', 'spbot', 'sqlmap', 'stackrambler', 'stripper', 'sucker', 'surftbot', 'sux0r', 'suzukacz', 'suzuran', 'takeout', 'teleport', 'telesoft', 'true_robots', 'turingos', 'turnit', 'unserialize', 'vampire', 'vikspider', 'voideye', 'webleacher', 'webreaper', 'webstripper', 'webvac', 'webviewer', 'webwhacker', 'winhttp', 'wwwoffle', 'woxbot', 'xaldon', 'xxxyy', 'yamanalab', 'yioopbot', 'youda', 'zeus', 'zmeu', 'zyborg'));
|
| 52 |
|
| 53 |
+
$referrer_array = apply_filters('referrer_items', array('blue\s?pill', 'ejaculat', 'erectile', 'erections', 'hoodia', 'huronriver', 'impotence', 'levitra', 'libido', 'lipitor', 'phentermin', 'pro[sz]ac', 'sandyauer', 'semalt\.com', 'todaperfeita', 'tramadol', 'ultram', 'unicauca', 'valium', 'viagra', 'vicodin', 'xanax', 'ypxaieo'));
|
| 54 |
|
| 55 |
//
|
| 56 |
|
readme.txt
CHANGED
|
@@ -9,9 +9,9 @@ Author URI: https://plugin-planet.com/
|
|
| 9 |
Contributors: specialk, aldolat, WpBlogHost, jameswilkes, juliobox, lernerconsult
|
| 10 |
Donate link: https://monzillamedia.com/donate.html
|
| 11 |
Requires at least: 4.1
|
| 12 |
-
Tested up to: 5.
|
| 13 |
-
Stable tag:
|
| 14 |
-
Version:
|
| 15 |
Requires PHP: 5.6.20
|
| 16 |
Text Domain: block-bad-queries
|
| 17 |
Domain Path: /languages
|
|
@@ -143,9 +143,15 @@ To test that the plugin is working, you can request any of the blocked patterns.
|
|
| 143 |
Replace `example.com` with your site's actual domain. If BBQ is active, the request for that URL will be blocked (with a "403 Forbidden" status). This means the plugin is working properly. You can test other patterns as well. To view all the patterns blocked by BBQ, look at the function `bbq_core()` located in `block-bad-queries.php`.
|
| 144 |
|
| 145 |
|
| 146 |
-
**
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 147 |
|
| 148 |
-
|
| 149 |
|
| 150 |
|
| 151 |
**Do I need to do anything else for BBQ to work?**
|
|
@@ -201,11 +207,6 @@ __Full question:__ "Except most of the rules overlapping, is it counter producti
|
|
| 201 |
__Answer:__ It's fine to run both BBQ and 6G/7G Firewall at the same time. Both firewalls are super fast, so they won't slow things down. In other words the two firewalls play well together. The only downside is that some of the rules will be redundant, but there should be no negative impact on performance. The upside is that you get extra protection when using both, as there are variations in the firewall rules and patterns, etc.
|
| 202 |
|
| 203 |
|
| 204 |
-
**Do you offer any other security plugins?**
|
| 205 |
-
|
| 206 |
-
Yes, check out [Blackhole for Bad Bots](https://wordpress.org/plugins/blackhole-bad-bots/) to protect your site against bad bots. I also have a [video course on WordPress security](https://m0n.co/securewp), for more plugin recommendations and lots of tips and tricks.
|
| 207 |
-
|
| 208 |
-
|
| 209 |
**My PHP checker found something?**
|
| 210 |
|
| 211 |
If you are using some PHP checker that's reporting an error or bad string in BBQ, it's a false positive and safe to ignore. Why? Because the PHP checker is finding the static strings/patterns that BBQ uses to identify and block bad requests. In other words, your PHP checker is finding a static string thinking it is live code. It's not. If possible, please take a moment to report this to the developers of your PHP checker. They should be happy to improve the accuracy and quality of their plugin. [More info](https://wordpress.org/support/topic/on-php-checker-results/).
|
|
@@ -248,6 +249,11 @@ Links, tweets and likes also appreciated. Thank you! :)
|
|
| 248 |
If you like BBQ, please take a moment to [give a 5-star rating](https://wordpress.org/support/plugin/block-bad-queries/reviews/?rate=5#new-post). It helps to keep development and support going strong. Thank you!
|
| 249 |
|
| 250 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 251 |
**2021/02/11**
|
| 252 |
|
| 253 |
* Removes `zune` pattern from user agents
|
| 9 |
Contributors: specialk, aldolat, WpBlogHost, jameswilkes, juliobox, lernerconsult
|
| 10 |
Donate link: https://monzillamedia.com/donate.html
|
| 11 |
Requires at least: 4.1
|
| 12 |
+
Tested up to: 5.8
|
| 13 |
+
Stable tag: 20210719
|
| 14 |
+
Version: 20210719
|
| 15 |
Requires PHP: 5.6.20
|
| 16 |
Text Domain: block-bad-queries
|
| 17 |
Domain Path: /languages
|
| 143 |
Replace `example.com` with your site's actual domain. If BBQ is active, the request for that URL will be blocked (with a "403 Forbidden" status). This means the plugin is working properly. You can test other patterns as well. To view all the patterns blocked by BBQ, look at the function `bbq_core()` located in `block-bad-queries.php`.
|
| 144 |
|
| 145 |
|
| 146 |
+
**Do you offer any other security plugins?**
|
| 147 |
+
|
| 148 |
+
Yes, three of them:
|
| 149 |
+
|
| 150 |
+
* [BBQ Firewall](https://wordpress.org/plugins/block-bad-queries/) for super-fast firewall security
|
| 151 |
+
* [Blackhole for Bad Bots](https://wordpress.org/plugins/blackhole-bad-bots/) to protect your site against bad bots
|
| 152 |
+
* [Banhammer](https://wordpress.org/plugins/banhammer/) to monitor and ban any user or IP address
|
| 153 |
|
| 154 |
+
Pro versions with more features available at [Plugin Planet](https://plugin-planet.com/).
|
| 155 |
|
| 156 |
|
| 157 |
**Do I need to do anything else for BBQ to work?**
|
| 207 |
__Answer:__ It's fine to run both BBQ and 6G/7G Firewall at the same time. Both firewalls are super fast, so they won't slow things down. In other words the two firewalls play well together. The only downside is that some of the rules will be redundant, but there should be no negative impact on performance. The upside is that you get extra protection when using both, as there are variations in the firewall rules and patterns, etc.
|
| 208 |
|
| 209 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 210 |
**My PHP checker found something?**
|
| 211 |
|
| 212 |
If you are using some PHP checker that's reporting an error or bad string in BBQ, it's a false positive and safe to ignore. Why? Because the PHP checker is finding the static strings/patterns that BBQ uses to identify and block bad requests. In other words, your PHP checker is finding a static string thinking it is live code. It's not. If possible, please take a moment to report this to the developers of your PHP checker. They should be happy to improve the accuracy and quality of their plugin. [More info](https://wordpress.org/support/topic/on-php-checker-results/).
|
| 249 |
If you like BBQ, please take a moment to [give a 5-star rating](https://wordpress.org/support/plugin/block-bad-queries/reviews/?rate=5#new-post). It helps to keep development and support going strong. Thank you!
|
| 250 |
|
| 251 |
|
| 252 |
+
**2021/07/19**
|
| 253 |
+
|
| 254 |
+
* Removes `ambien` from referrer patterns
|
| 255 |
+
* Tests on WordPress 5.8
|
| 256 |
+
|
| 257 |
**2021/02/11**
|
| 258 |
|
| 259 |
* Removes `zune` pattern from user agents
|
