Title: Secure Owl Firewall Author: Sajber Sove Published: 10. April 2026 Last modified: 8. Mai 2026 --- Plugins durchsuchen ![](https://ps.w.org/secure-owl-firewall/assets/banner-772x250.png?rev=3503274) ![](https://ps.w.org/secure-owl-firewall/assets/icon-256x256.png?rev=3503274) # Secure Owl Firewall Von [Sajber Sove](https://profiles.wordpress.org/sajbersove/) [Herunterladen](https://downloads.wordpress.org/plugin/secure-owl-firewall.1.1.0.zip) * [Details](https://de.wordpress.org/plugins/secure-owl-firewall/#description) * [Rezensionen](https://de.wordpress.org/plugins/secure-owl-firewall/#reviews) * [Installation](https://de.wordpress.org/plugins/secure-owl-firewall/#installation) * [Entwicklung](https://de.wordpress.org/plugins/secure-owl-firewall/#developers) [Support](https://wordpress.org/support/plugin/secure-owl-firewall/) ## Beschreibung Secure Owl Firewall is a fast, lightweight firewall plugin with an advanced rule engine featuring PCRE pattern matching, a transformation pipeline, and JSON-based rule configuration. Key features: * JSON-based rules — 100+ default rules covering SQLi, XSS, RCE, LFI, SSRF, Log4Shell, and more * Transformation pipeline — URL decode, lowercase, normalize path, remove whitespace, HTML entity decode, trim * Inspection targets — REQUEST_URI, QUERY_STRING, USER_AGENT, REFERER, COOKIE, and POST * MU-Plugin loader — runs before regular plugins for earliest protection * Rate limiting — optional transient-based IP and subnet banning * Login protection — PIN field, speed limit and honeypot to block brute-force attacks * IP whitelist — CIDR/subnet support for both IPv4 and IPv6 * IP blacklist — CIDR/subnet support for both IPv4 and IPv6 * Per-rule toggle — disable individual rules from the admin panel without editing files * File-based logging — 64MB cap with auto-rotation and protected storage * Log retention — configurable policy for GDPR compliance * IP anonymization — masks user IP addresses for enhanced privacy and GDPR compliance ### Filter Hooks * `sswaf_ip_whitelist` — array of IPs to bypass the firewall * `sswaf_ip_blacklist` — array of IPs to block before any rules run * `sswaf_trusted_proxies` — array of trusted proxy IPs for X-Forwarded-For * `sswaf_post_scanning` — enable POST data inspection (default: true) * `sswaf_rules_file` — path to the rules JSON file * `sswaf_log_file` — path to the log file * `sswaf_log_max_size` — maximum log size in bytes * `sswaf_header_status` — HTTP status header for blocked requests * `sswaf_before_block` — action hook fired before blocking a request * `sswaf_rate_limit_ip_threshold` — override IP hit threshold * `sswaf_rate_limit_ip_duration` — override IP ban duration * `sswaf_rate_limit_ip_window` — override IP counting window ## Installation 1. Upload the `secure-owl-firewall` folder to `/wp-content/plugins/` 2. Activate through the Plugins menu 3. The MU-Plugin loader is installed automatically for early execution 4. Configure settings under Settings > Secure Owl Firewall ## Rezensionen Für dieses Plugin gibt es keine Rezensionen. ## Mitwirkende und Entwickler „Secure Owl Firewall“ ist Open-Source-Software. Folgende Menschen haben an diesem Plugin mitgewirkt: Mitwirkende * [ Sajber Sove ](https://profiles.wordpress.org/sajbersove/) [Übersetze „Secure Owl Firewall“ in deine Sprache.](https://translate.wordpress.org/projects/wp-plugins/secure-owl-firewall) ### Interessiert an der Entwicklung? [Durchstöbere den Code](https://plugins.trac.wordpress.org/browser/secure-owl-firewall/), sieh dir das [SVN-Repository](https://plugins.svn.wordpress.org/secure-owl-firewall/) an oder abonniere das [Entwicklungsprotokoll](https://plugins.trac.wordpress.org/log/secure-owl-firewall/) per [RSS](https://plugins.trac.wordpress.org/log/secure-owl-firewall/?limit=100&mode=stop_on_copy&format=rss). ## Änderungsprotokoll #### 1.0.0 * Initial release. #### 1.0.1 * Updated security rules. * Updated log file cap to 24MB. #### 1.0.2 * Added IP whitelist with CIDR/subnet support (IPv4 + IPv6). * File-based storage for zero database overhead. * Settings UI with validation. #### 1.0.3 * Removed metadata from a JSON rules file. * Small CSS admin tweak. #### 1.0.4 * Added configurable log retention policy to automatically purge old data for GDPR compliance. * Added option to anonymize user IP addresses, enhancing privacy and GDPR compliance. * Rework plugin update mechanism. * Improved coding standards to align better with WordPress guidelines. #### 1.0.5 * Updated log file cap to 64MB. * Fixed a small bug in admin panel log viewer. #### 1.0.6 * Added rate-limited PIN authentication to the login page to mitigate brute-force attacks. * Added a honeypot trap to the login form to catch unsophisticated bots. #### 1.0.7 * Removed a few overly aggressive rules. #### 1.0.8 * Added IP blacklist with CIDR/subnet support (IPv4 + IPv6). #### 1.0.9 * Fixed a small bug in log viewer. #### 1.1.0 * Updated security rules. * Added a speed limit protection layer to the login page. ## Meta * Version **1.1.0** * Zuletzt aktualisiert **vor 7 Tagen** * Aktive Installationen **weniger als 10** * WordPress-Version ** 5.0 oder höher ** * Getestet bis **6.9.4** * PHP-Version ** 7.4 oder höher ** * Sprache * [English (US)](https://wordpress.org/plugins/secure-owl-firewall/) * Schlagwörter * [firewall](https://de.wordpress.org/plugins/tags/firewall/)[protection](https://de.wordpress.org/plugins/tags/protection/) [security](https://de.wordpress.org/plugins/tags/security/)[WAF](https://de.wordpress.org/plugins/tags/waf/) * [Erweiterte Ansicht](https://de.wordpress.org/plugins/secure-owl-firewall/advanced/) ## Bewertungen Es wurden noch keine Rezensionen eingereicht. [Your review](https://wordpress.org/support/plugin/secure-owl-firewall/reviews/#new-post) [Alle Rezensionen anzeigen](https://wordpress.org/support/plugin/secure-owl-firewall/reviews/) ## Mitwirkende * [ Sajber Sove ](https://profiles.wordpress.org/sajbersove/) ## Support Möchtest du etwas mitteilen? Brauchst du Unterstützung? [Support-Forum anzeigen](https://wordpress.org/support/plugin/secure-owl-firewall/)