Toggle source

Crowdsec for wordpress

Prerequisites

CrowdSec v1

curl -s https://packagecloud.io/install/repositories/crowdsec/crowdsec/script.deb.sh | sudo bash
apt install crowdsec

Remediation Component

apt install crowdsec-firewall-bouncer-iptables

Wordpress extension

Wordpress Bouncer

Crowdsec extension

Download it here or from WP admin panel.

Extension parameters

Generate API Key

cscli bouncers add wordpress-bouncer

WP BO -> Crowdsec > Crowdsec

Local API URL = http://localhost:8080
Authentication type = Bouncer API Key
Bouncing level = Normal Bouncing
Public website only = unchecked

WP BO -> Crowdsec > Advanced

Recheck clean IPs each = 1
Recheck bad IPs each = 1

Litespeed scenarios

sudo cscli collections install crowdsecurity/litespeed

And configure the file /etc/crowdsec/acquis.yml :

filenames:
  - /usr/local/lsws/vhosts/<YOURVHOST>/logs/*.log
  - /usr/local/lsws/admin/logs/*.log
  - /usr/local/lsws/logs/*.log
labels:
  type: litespeed

# Crowdsec for wordpress

## Prerequisites

[Getting started](https://doc.crowdsec.net/docs/getting_started/install_crowdsec/)

### CrowdSec v1

```bash
curl -s https://packagecloud.io/install/repositories/crowdsec/crowdsec/script.deb.sh | sudo bash
apt install crowdsec
```

### Remediation Component
```bash
apt install crowdsec-firewall-bouncer-iptables
```

## Wordpress extension

[Wordpress Bouncer](https://docs.crowdsec.net/u/bouncers/wordpress/)

### Crowdsec extension

[Download it here](https://fr.wordpress.org/plugins/crowdsec/) or from WP admin panel.

### Extension parameters

#### Generate API Key

```bash
cscli bouncers add wordpress-bouncer
```

#### WP BO -> Crowdsec > Crowdsec

```ini
Local API URL = http://localhost:8080
Authentication type = Bouncer API Key
Bouncing level = Normal Bouncing
Public website only = unchecked
```

#### WP BO -> Crowdsec > Advanced

```ini
Recheck clean IPs each = 1
Recheck bad IPs each = 1
```

#### Litespeed scenarios

```bash
sudo cscli collections install crowdsecurity/litespeed
```