Title: Secure Owl Firewall Author: Sajber Sove Published: 10. april 2026 Last modified: 3. mai 2026 --- Søk gjennom innstikk ![](https://ps.w.org/secure-owl-firewall/assets/banner-772x250.png?rev=3503274) ![](https://ps.w.org/secure-owl-firewall/assets/icon-256x256.png?rev=3503274) # Secure Owl Firewall Av [Sajber Sove](https://profiles.wordpress.org/sajbersove/) [Last ned](https://downloads.wordpress.org/plugin/secure-owl-firewall.1.0.9.zip) * [Detaljar](https://nn.wordpress.org/plugins/secure-owl-firewall/#description) * [Omtalar](https://nn.wordpress.org/plugins/secure-owl-firewall/#reviews) * [Installasjon](https://nn.wordpress.org/plugins/secure-owl-firewall/#installation) * [Utvikling](https://nn.wordpress.org/plugins/secure-owl-firewall/#developers) [Hjelp](https://wordpress.org/support/plugin/secure-owl-firewall/) ## Skildring Secure Owl Firewall is a fast, lightweight firewall plugin with an advanced rule engine featuring PCRE pattern matching, a transformation pipeline, and JSON-based rule configuration. Key features: * JSON-based rules — 100+ default rules covering SQLi, XSS, RCE, LFI, SSRF, Log4Shell, and more * Transformation pipeline — URL decode, lowercase, normalize path, remove whitespace, HTML entity decode, trim * Inspection targets — REQUEST_URI, QUERY_STRING, USER_AGENT, REFERER, COOKIE, and POST * MU-Plugin loader — runs before regular plugins for earliest protection * Rate limiting — optional transient-based IP and subnet banning * Login protection — PIN field and honeypot to block brute-force attacks * IP whitelist — CIDR/subnet support for both IPv4 and IPv6 * IP blacklist — CIDR/subnet support for both IPv4 and IPv6 * Per-rule toggle — disable individual rules from the admin panel without editing files * File-based logging — 64MB cap with auto-rotation and protected storage * Log retention — configurable policy for GDPR compliance * IP anonymization — masks user IP addresses for enhanced privacy and GDPR compliance ### Filter Hooks * `sswaf_ip_whitelist` — array of IPs to bypass the firewall * `sswaf_ip_blacklist` — array of IPs to block before any rules run * `sswaf_trusted_proxies` — array of trusted proxy IPs for X-Forwarded-For * `sswaf_post_scanning` — enable POST data inspection (default: true) * `sswaf_rules_file` — path to the rules JSON file * `sswaf_log_file` — path to the log file * `sswaf_log_max_size` — maximum log size in bytes * `sswaf_header_status` — HTTP status header for blocked requests * `sswaf_before_block` — action hook fired before blocking a request * `sswaf_rate_limit_ip_threshold` — override IP hit threshold * `sswaf_rate_limit_ip_duration` — override IP ban duration * `sswaf_rate_limit_ip_window` — override IP counting window ## Installasjon 1. Upload the `secure-owl-firewall` folder to `/wp-content/plugins/` 2. Activate through the Plugins menu 3. The MU-Plugin loader is installed automatically for early execution 4. Configure settings under Settings > Secure Owl Firewall ## Omtalar There are no reviews for this plugin. ## Bidragsytarar og utviklarar “Secure Owl Firewall” is open source software. The following people have contributed to this plugin. Contributors * [ Sajber Sove ](https://profiles.wordpress.org/sajbersove/) [Omset “Secure Owl Firewall” til ditt eige språk.](https://translate.wordpress.org/projects/wp-plugins/secure-owl-firewall) ### Interested in development? [Les kjeldekoden](https://plugins.trac.wordpress.org/browser/secure-owl-firewall/), sjekk [SVN-lageret](https://plugins.svn.wordpress.org/secure-owl-firewall/) eller abonner på [utviklingsloggen](https://plugins.trac.wordpress.org/log/secure-owl-firewall/) med [RSS](https://plugins.trac.wordpress.org/log/secure-owl-firewall/?limit=100&mode=stop_on_copy&format=rss). ## Endringslogg #### 1.0.0 * Initial release. #### 1.0.1 * Updated security rules. * Updated log file cap to 24MB. #### 1.0.2 * Added IP whitelist with CIDR/subnet support (IPv4 + IPv6). * File-based storage for zero database overhead. * Settings UI with validation. #### 1.0.3 * Removed metadata from a JSON rules file. * Small CSS admin tweak. #### 1.0.4 * Added configurable log retention policy to automatically purge old data for GDPR compliance. * Added option to anonymize user IP addresses, enhancing privacy and GDPR compliance. * Rework plugin update mechanism. * Improved coding standards to align better with WordPress guidelines. #### 1.0.5 * Updated log file cap to 64MB. * Fixed a small bug in admin panel log viewer. #### 1.0.6 * Added rate-limited PIN authentication to the login page to mitigate brute-force attacks. * Added a honeypot trap to the login form to catch unsophisticated bots. #### 1.0.7 * Removed a few overly aggressive rules. #### 1.0.8 * Added IP blacklist with CIDR/subnet support (IPv4 + IPv6). #### 1.0.9 * Fixed a small bug in log viewer. ## Om * Version **1.0.9** * Last updated **3 dagar sidan** * Active installations **Færre enn 10** * WordPress version ** 5.0 eller nyare ** * Tested up to **6.9.4** * PHP version ** 7.4 eller nyare ** * Language * [English (US)](https://wordpress.org/plugins/secure-owl-firewall/) * Tags * [firewall](https://nn.wordpress.org/plugins/tags/firewall/)[protection](https://nn.wordpress.org/plugins/tags/protection/) [security](https://nn.wordpress.org/plugins/tags/security/)[WAF](https://nn.wordpress.org/plugins/tags/waf/) * [Avansert vising](https://nn.wordpress.org/plugins/secure-owl-firewall/advanced/) ## Vurderingar No reviews have been submitted yet. [Your review](https://wordpress.org/support/plugin/secure-owl-firewall/reviews/#new-post) [See all reviews](https://wordpress.org/support/plugin/secure-owl-firewall/reviews/) ## Contributors * [ Sajber Sove ](https://profiles.wordpress.org/sajbersove/) ## Hjelp Har du noko å seia? Treng du hjelp? [Sjå hjelpeforumet](https://wordpress.org/support/plugin/secure-owl-firewall/)