Block Bad User-Agents

Block Bad User-Agents

What It Does

This module maintains a list of dangerous user-agent patterns that are commonly used in attacks, such as shell commands, HTML injection attempts, or other malicious patterns. When a request contains these patterns in its user-agent string, it is automatically blocked.

The module also blocks user-agent strings containing HTML tags, which can indicate cross-site scripting attempts or other malicious activities.

Why It Matters

Malicious requests and automated attacks are constantly targeting WordPress websites.

By blocking these requests before they reach your site, you protect it from many common attack vectors.

How to Use

Activate this module in the Firewall & GeoIP section of SecuPress settings.

Once activated, the module works automatically and provides protection for your website.

If you encounter any issues after activation, you can temporarily deactivate the module. The module will automatically remove its protection rules when deactivated.