PHPGate - block wp-login brute force, block or rate-limit known bots

[myVesta]

What is PHPGate:
PHPGate is a PHP script that will be executed before every http request to the PHP script.
It is designed to prevent brute-force attacks on WP-Login and to block or rate-limit bots.
You can easily tweak and customize it (in phpgate-conf.php) to block custom URL login failures or custom Agent strings.

What is doing PHPGate:

• Prevent wp-login.php failed login attempts (brute-force attacks)
• Rate-limit good bots (ChatGPT, Claude, Facebook, Ahrefs), and block bad bots

Source code:

• https://github.com/myvesta/vesta/tree/m ... ls/phpgate

List of rate-limited and banned bots:

• https://github.com/myvesta/vesta/blob/m ... gs.php#L14

How to install:

Code: Select all

v-commander 'inst pgw'