{"id":250452,"date":"2025-09-03T17:33:22","date_gmt":"2025-09-03T17:33:22","guid":{"rendered":"https:\/\/wordpress.org\/plugins\/edh-bad-bots\/"},"modified":"2025-09-06T18:12:25","modified_gmt":"2025-09-06T18:12:25","slug":"edh-bad-bots","status":"publish","type":"plugin","link":"https:\/\/bal.wordpress.org\/plugins\/edh-bad-bots\/","author":20917365,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_crdt_document":"","version":"1.4.3","stable_tag":"1.4.3","tested":"6.8.5","requires":"6.2","requires_php":"7.4","requires_plugins":null,"header_name":"EDH Bad Bots","header_author":"EncodeDotHost","header_description":"This plugin is used to block bots that don't honor the robots.txt file from the site.","assets_banners_color":"","last_updated":"2025-09-06 18:12:25","external_support_url":"","external_repository_url":"","donate_link":"","header_plugin_uri":"https:\/\/github.com\/EncodeDotHost\/edh-bad-bots","header_author_uri":"https:\/\/encode.host","rating":5,"author_block_rating":0,"active_installs":20,"downloads":349,"num_ratings":1,"support_threads":0,"support_threads_resolved":0,"author_block_count":0,"sections":["description","installation","faq","changelog"],"tags":{"1.4.2":{"tag":"1.4.2","author":"encodedothost","date":"2025-09-03 17:32:55"},"1.4.3":{"tag":"1.4.3","author":"encodedothost","date":"2025-09-06 18:12:25"}},"upgrade_notice":[],"ratings":{"1":0,"2":0,"3":0,"4":0,"5":1},"assets_icons":{"icon-128x128.png":{"filename":"icon-128x128.png","revision":3355590,"resolution":"128x128","location":"assets","locale":""},"icon-256x256.png":{"filename":"icon-256x256.png","revision":3355590,"resolution":"256x256","location":"assets","locale":""},"icon.svg":{"filename":"icon.svg","revision":3355590,"resolution":false,"location":"assets","locale":false}},"assets_banners":[],"assets_blueprints":{},"all_blocks":[],"tagged_versions":["1.4.2","1.4.3"],"block_files":[],"assets_screenshots":{"screenshot-1.png":{"filename":"screenshot-1.png","revision":3355590,"resolution":"1","location":"assets","locale":""},"screenshot-2.png":{"filename":"screenshot-2.png","revision":3355590,"resolution":"2","location":"assets","locale":""},"screenshot-3.png":{"filename":"screenshot-3.png","revision":3355590,"resolution":"3","location":"assets","locale":""}},"screenshots":{"1":"Allow list management","2":"Block list management with hostname display","3":"Options Page with configurable settings"},"jetpack_post_was_ever_published":false},"plugin_section":[],"plugin_tags":[4866,14328,3920,247500,600],"plugin_category":[],"plugin_contributors":[219301,219302],"plugin_business_model":[],"class_list":["post-250452","plugin","type-plugin","status-publish","hentry","plugin_tags-bots","plugin_tags-dns","plugin_tags-hostname","plugin_tags-ptr","plugin_tags-security","plugin_contributors-encodedothost","plugin_contributors-nbwpuk","plugin_committers-encodedothost"],"banners":[],"icons":{"svg":"https:\/\/ps.w.org\/edh-bad-bots\/assets\/icon.svg?rev=3355590","icon":"https:\/\/ps.w.org\/edh-bad-bots\/assets\/icon.svg?rev=3355590","icon_2x":false,"generated":false},"screenshots":[{"src":"https:\/\/ps.w.org\/edh-bad-bots\/assets\/screenshot-1.png?rev=3355590","caption":"Allow list management"},{"src":"https:\/\/ps.w.org\/edh-bad-bots\/assets\/screenshot-2.png?rev=3355590","caption":"Block list management with hostname display"},{"src":"https:\/\/ps.w.org\/edh-bad-bots\/assets\/screenshot-3.png?rev=3355590","caption":"Options Page with configurable settings"}],"raw_content":"<!--section=description-->\n<p>EDH Bad Bots is an intelligent bot detection and blocking system that protects your WordPress site from unwanted crawlers and malicious bots. Unlike traditional blocking methods that rely on user agent strings (which can be easily spoofed), this plugin uses a honeypot technique to identify and block bots that don't respect your site's <code>robots.txt<\/code> directives.<\/p>\n\n<h3>Key Features<\/h3>\n\n<ul>\n<li><strong>Automatic Bot Detection<\/strong>: Identifies bad bots using a hidden trap URL technique<\/li>\n<li><strong>Smart Blocking System<\/strong>: Blocks misbehaving bots with configurable duration (default 30 days)<\/li>\n<li><strong>Advanced DNS Resolution<\/strong>: PTR record lookups with DNS over HTTPS (DoH) support for hostname identification<\/li>\n<li><strong>Dual-Level Blocking<\/strong>: Server-level <code>.htaccess<\/code> blocking AND PHP-level blocking for maximum effectiveness<\/li>\n<li><strong>Configurable Blocking Methods<\/strong>: Choose between <code>.htaccess<\/code> blocking (Apache) or PHP-only blocking (Nginx compatible)<\/li>\n<li><strong>IP Whitelist Management<\/strong>: Protect trusted IPs from ever being blocked<\/li>\n<li><strong>Enhanced Admin Interface<\/strong>: Clean dashboard with hostname display, manual hostname updates, and debug tools<\/li>\n<li><strong>Background Processing<\/strong>: Automated hostname resolution via WordPress cron jobs<\/li>\n<li><strong>Zero False Positives<\/strong>: Legitimate search engine bots that follow robots.txt rules are never affected<\/li>\n<li><strong>Database Optimization<\/strong>: Automatic cleanup of expired blocks to maintain performance<\/li>\n<li><strong>Security-First Design<\/strong>: All forms include proper nonce verification and user capability checks<\/li>\n<\/ul>\n\n<h3>How It Works<\/h3>\n\n<p>The plugin implements a sophisticated honeypot system:<\/p>\n\n<ol>\n<li><strong>Trap URL Generation<\/strong>: Creates a unique, hidden URL specific to your domain<\/li>\n<li><strong>Robots.txt Integration<\/strong>: Automatically adds a <code>Disallow<\/code> rule for the trap URL<\/li>\n<li><strong>Hidden Link Placement<\/strong>: Places an invisible link to the trap URL in your site's footer<\/li>\n<li><strong>Bot Detection<\/strong>: When bad bots ignore robots.txt and follow the hidden link, they're identified<\/li>\n<li><strong>Automatic Blocking<\/strong>: Detected bot IPs are blocked with configurable duration and immediate effect<\/li>\n<li><strong>Hostname Resolution<\/strong>: PTR record lookups identify the hostname\/organization behind blocked IPs<\/li>\n<li><strong>Legitimate Bot Protection<\/strong>: Good bots (like Googlebot) respect robots.txt and never trigger the trap<\/li>\n<\/ol>\n\n<h3>Configuration<\/h3>\n\n<h3>Admin Dashboard<\/h3>\n\n<p>Access the plugin dashboard at <strong>Tools &gt; Bad Bots<\/strong> in your WordPress admin:<\/p>\n\n<h4>Whitelisted IPs Tab<\/h4>\n\n<ul>\n<li>Add IP addresses that should never be blocked<\/li>\n<li>Remove IPs from the whitelist<\/li>\n<li>View all currently whitelisted addresses with timestamps<\/li>\n<\/ul>\n\n<h4>Blocked Bots Tab<\/h4>\n\n<ul>\n<li>View all currently blocked IP addresses with hostnames<\/li>\n<li>See when each IP was blocked and when the block expires<\/li>\n<li>Manually update missing hostnames for better identification<\/li>\n<li>Force refresh all hostnames to clear cache and re-resolve<\/li>\n<li>Debug hostname resolution issues (when WP_DEBUG is enabled)<\/li>\n<li>Manually unblock IPs if needed<\/li>\n<\/ul>\n\n<h4>Options Tab<\/h4>\n\n<ul>\n<li><strong><code>.htaccess Blocking<\/code><\/strong>: Enable\/disable server-level IP blocking via <code>.htaccess<\/code> file<\/li>\n<li><strong>Block Duration<\/strong>: Configure how many days to block detected bots<\/li>\n<li>Configure blocking method based on your server setup (Apache vs Nginx)<\/li>\n<li>Server-level blocking bypasses caching for immediate effect<\/li>\n<\/ul>\n\n<h4>Help Tab<\/h4>\n\n<ul>\n<li>Detailed explanation of how the plugin works<\/li>\n<li>Best practices for managing IPs<\/li>\n<li>Information about <code>.htaccess<\/code> blocking options<\/li>\n<li>Unique trap URL for caching plugin exclusion<\/li>\n<\/ul>\n\n<h3>Requirements<\/h3>\n\n<ul>\n<li>WordPress 6.2 or higher<\/li>\n<li>PHP 7.4 or higher<\/li>\n<li>MySQL 5.6 or higher<\/li>\n<li>Apache server (for <code>.htaccess<\/code> blocking) or Nginx (PHP-only blocking)<\/li>\n<li>Writable <code>.htaccess<\/code> file (if using Apache server-level blocking)<\/li>\n<\/ul>\n\n<h3>Technical Details<\/h3>\n\n<h3>Database Tables<\/h3>\n\n<p>The plugin creates two custom database tables:<\/p>\n\n<ul>\n<li><code>wp_edhbb_blocked_bots<\/code>: Stores blocked IP addresses with expiration dates and hostnames<\/li>\n<li><code>wp_edhbb_whitelisted_ips<\/code>: Stores permanently whitelisted IP addresses<\/li>\n<\/ul>\n\n<h3>DNS Resolution System<\/h3>\n\n<p>The plugin includes an advanced DNS lookup system:<\/p>\n\n<h4>DNS over HTTPS (DoH) Support<\/h4>\n\n<ul>\n<li><strong>Primary providers<\/strong>: Cloudflare DNS, Google DNS<\/li>\n<li><strong>Secure queries<\/strong>: HTTPS-encrypted DNS requests for enhanced privacy<\/li>\n<li><strong>Fallback system<\/strong>: Automatic fallback to traditional DNS methods<\/li>\n<\/ul>\n\n<h4>PTR Record Lookups<\/h4>\n\n<ul>\n<li><strong>Reverse DNS<\/strong>: Converts IP addresses to hostnames for better identification<\/li>\n<li><strong>IPv4 and IPv6 support<\/strong>: Full support for both IP versions<\/li>\n<li><strong>Caching<\/strong>: Results cached for 1 hour to improve performance<\/li>\n<li><strong>Background processing<\/strong>: Automated hostname resolution via WordPress cron<\/li>\n<\/ul>\n\n<h3>Blocking Methods<\/h3>\n\n<p>The plugin offers two blocking approaches:<\/p>\n\n<h4>1. Server-Level Blocking (<code>.htaccess<\/code>)<\/h4>\n\n<ul>\n<li><strong>Default method<\/strong> for Apache servers<\/li>\n<li>Blocks IPs at the server level before WordPress loads<\/li>\n<li>Bypasses caching plugins for immediate effect<\/li>\n<li>More efficient and faster blocking<\/li>\n<li>Automatically manages <code>.htaccess<\/code> file with unique markers<\/li>\n<li>Safe cleanup on plugin deactivation<\/li>\n<\/ul>\n\n<h4>2. PHP-Level Blocking<\/h4>\n\n<ul>\n<li><strong>Alternative method<\/strong> for Nginx or when <code>.htaccess<\/code> is unavailable<\/li>\n<li>Blocks IPs during WordPress initialization<\/li>\n<li>Compatible with all web servers<\/li>\n<li>May be affected by caching plugins<\/li>\n<li>No server configuration files modified<\/li>\n<\/ul>\n\n<h3>Security Features<\/h3>\n\n<ul>\n<li><strong>Nonce Verification<\/strong>: All forms use WordPress nonces for CSRF protection<\/li>\n<li><strong>Capability Checks<\/strong>: Only users with <code>manage_options<\/code> capability can access admin features<\/li>\n<li><strong>Input Sanitization<\/strong>: All user inputs are properly sanitized and validated<\/li>\n<li><strong>SQL Injection Protection<\/strong>: All database queries use prepared statements<\/li>\n<li><strong>Safe <code>.htaccess<\/code> Management<\/strong>: Uses unique markers and automatic cleanup<\/li>\n<\/ul>\n\n<h3>Performance Optimization<\/h3>\n\n<ul>\n<li><strong>Automatic Cleanup<\/strong>: Expired blocks are automatically removed from the database<\/li>\n<li><strong>Efficient Queries<\/strong>: Database operations are optimized for minimal performance impact<\/li>\n<li><strong>Smart Loading<\/strong>: Admin assets only load on the plugin's admin page<\/li>\n<li><strong>Server-Level Blocking<\/strong>: <code>.htaccess<\/code> blocking prevents blocked requests from reaching PHP<\/li>\n<li><strong>Whitelist Filtering<\/strong>: Whitelisted IPs are excluded from <code>.htaccess<\/code> rules automatically<\/li>\n<li><strong>DNS Caching<\/strong>: Hostname lookups cached to reduce DNS query overhead<\/li>\n<li><strong>Background Processing<\/strong>: Hostname resolution runs in background to avoid delays<\/li>\n<\/ul>\n\n<h3>API Hooks<\/h3>\n\n<h3>Actions<\/h3>\n\n<ul>\n<li><code>plugins_loaded<\/code>: Plugin initialization<\/li>\n<li><code>init<\/code>: Early request blocking check<\/li>\n<li><code>template_redirect<\/code>: Bot trap detection<\/li>\n<li><code>wp_footer<\/code>: Hidden link injection<\/li>\n<li><code>admin_menu<\/code>: Admin page registration<\/li>\n<li><code>edhbb_update_hostnames_cron<\/code>: Background hostname resolution<\/li>\n<\/ul>\n\n<h3>Filters<\/h3>\n\n<ul>\n<li><code>robots_txt<\/code>: Adds disallow rule to robots.txt<\/li>\n<\/ul>\n\n<h3>File Structure<\/h3>\n\n<pre><code>`\n<\/code><\/pre>\n\n<p>edh-bad-bots\/\n\u251c\u2500\u2500 admin\/\n\u2502   \u2514\u2500\u2500 views\/\n\u2502       \u2514\u2500\u2500 admin-display.php    # Admin interface HTML\n\u251c\u2500\u2500 assets\/\n\u2502   \u251c\u2500\u2500 css\/\n\u2502   \u2502   \u2514\u2500\u2500 admin-style.css      # Admin page styling\n\u2502   \u2514\u2500\u2500 js\/\n\u2502       \u2514\u2500\u2500 admin-script.js      # Admin page JavaScript\n\u251c\u2500\u2500 includes\/\n\u2502   \u251c\u2500\u2500 class-edhbb-admin.php    # Admin functionality\n\u2502   \u251c\u2500\u2500 class-edhbb-blocker.php  # Bot detection and blocking\n\u2502   \u251c\u2500\u2500 class-edhbb-database.php # Database operations\n\u2502   \u2514\u2500\u2500 class-edhbb-dnslookup.php # DNS\/PTR lookup system\n\u251c\u2500\u2500 edh-bad-bots.php            # Main plugin file\n\u251c\u2500\u2500 LICENSE\n\u2514\u2500\u2500 readme.txt\n    `<\/p>\n\n<h3>Contributing<\/h3>\n\n<p>Contributions are welcome! Please feel free to submit a Pull Request.<\/p>\n\n<h3>Development Setup<\/h3>\n\n<ol>\n<li>Clone the repository to your WordPress plugins directory<\/li>\n<li>Ensure you have a WordPress development environment running<\/li>\n<li>Activate the plugin and test your changes<\/li>\n<\/ol>\n\n<h3>License<\/h3>\n\n<p>This project is licensed under the GPL v3 or later.<\/p>\n\n<h3>Author<\/h3>\n\n<p><strong>EncodeDotHost<\/strong>\n- Website: <a href=\"https:\/\/encode.host\">https:\/\/encode.host<\/a>\n- GitHub: <a href=\"https:\/\/github.com\/EncodeDotHost\">@EncodeDotHost<\/a><\/p>\n\n<h3>Contributors<\/h3>\n\n<ul>\n<li><a href=\"https:\/\/github.com\/nbwpuk\">@nbwpuk<\/a><\/li>\n<\/ul>\n\n<h3>Support<\/h3>\n\n<p>For support, please visit <a href=\"https:\/\/encode.host\">https:\/\/encode.host<\/a> or create an issue on the GitHub repository.<\/p>\n\n<!--section=installation-->\n<ol>\n<li>Upload the <code>edh-bad-bots<\/code> folder to your <code>\/wp-content\/plugins\/<\/code> directory<\/li>\n<li>Activate the plugin through the 'Plugins' menu in WordPress<\/li>\n<li>The plugin works immediately - no configuration required!<\/li>\n<li>Optionally, visit <strong>Tools &gt; Bad Bots<\/strong> to manage whitelisted IPs and view blocked bots<\/li>\n<\/ol>\n\n<!--section=faq-->\n<dl>\n<dt id='will%20this%20block%20legitimate%20search%20engines%3F'><h3>Will this block legitimate search engines?<\/h3><\/dt>\n<dd><p>No! Legitimate search engines like Google, Bing, and others respect robots.txt files and will never hit the trap URL.<\/p><\/dd>\n<dt id='how%20long%20are%20bots%20blocked%20for%3F'><h3>How long are bots blocked for?<\/h3><\/dt>\n<dd><p>Bots are blocked for a configurable duration (default 30 days) that you can adjust in the Options tab. You can manually unblock them earlier if needed.<\/p><\/dd>\n<dt id='can%20i%20protect%20my%20own%20ip%20address%3F'><h3>Can I protect my own IP address?<\/h3><\/dt>\n<dd><p>Yes! Add your IP address to the whitelist in the admin panel to ensure you're never blocked.<\/p><\/dd>\n<dt id='what%27s%20the%20difference%20between%20.htaccess%20and%20php%20blocking%3F'><h3>What's the difference between .htaccess and PHP blocking?<\/h3><\/dt>\n<dd><p>.htaccess blocking (default) blocks bots at the server level before WordPress loads, making it faster and more effective. PHP blocking works during WordPress initialization and is compatible with Nginx servers.<\/p><\/dd>\n<dt id='what%20is%20hostname%20resolution%20and%20why%20is%20it%20useful%3F'><h3>What is hostname resolution and why is it useful?<\/h3><\/dt>\n<dd><p>The plugin performs PTR record lookups to identify the hostname\/organization behind blocked IP addresses. This helps you understand what types of bots are being blocked (e.g., \"crawl-66-249-66-1.googlebot.com\" vs unknown IPs) for better analysis and decision-making.<\/p><\/dd>\n<dt id='how%20does%20the%20dns%20over%20https%20feature%20work%3F'><h3>How does the DNS over HTTPS feature work?<\/h3><\/dt>\n<dd><p>The plugin uses secure HTTPS-encrypted DNS queries via providers like Cloudflare and Google DNS for enhanced privacy and reliability when resolving hostnames. It automatically falls back to traditional DNS methods if DoH is unavailable.<\/p><\/dd>\n<dt id='does%20this%20affect%20site%20performance%3F'><h3>Does this affect site performance?<\/h3><\/dt>\n<dd><p>The plugin is designed for minimal performance impact. Server-level <code>.htaccess<\/code> blocking actually improves performance by stopping blocked requests before they reach PHP. DNS lookups are cached and processed in the background to avoid delays.<\/p><\/dd>\n<dt id='will%20this%20work%20with%20caching%20plugins%3F'><h3>Will this work with caching plugins?<\/h3><\/dt>\n<dd><p>Yes! Server-level <code>.htaccess<\/code> blocking bypasses caching entirely, ensuring blocked bots are stopped immediately. PHP-level blocking may be affected by some caching configurations. To ensure the bot trap works correctly, you should exclude the unique trap URL from your caching plugin. You can find this URL in the \"Help\" tab of the plugin's settings.<\/p><\/dd>\n<dt id='what%20happens%20if%20i%20deactivate%20the%20plugin%3F'><h3>What happens if I deactivate the plugin?<\/h3><\/dt>\n<dd><p>The blocking stops immediately and <code>.htaccess<\/code> rules are automatically cleaned up. Your data (blocked IPs and whitelist) is preserved in case you reactivate the plugin later.<\/p><\/dd>\n<dt id='is%20it%20safe%20for%20my%20.htaccess%20file%3F'><h3>Is it safe for my .htaccess file?<\/h3><\/dt>\n<dd><p>Yes! The plugin uses unique markers (<code># BEGIN EDH Bad Bots Block<\/code> \/ <code># END EDH Bad Bots Block<\/code>) to safely manage its rules without affecting other configurations. Rules are automatically removed on deactivation.<\/p><\/dd>\n<dt id='can%20i%20manually%20update%20hostnames%20for%20blocked%20ips%3F'><h3>Can I manually update hostnames for blocked IPs?<\/h3><\/dt>\n<dd><p>Yes! In the \"Blocked Bots\" tab, you can use the \"Update Missing Hostnames\" button to resolve hostnames for IPs that don't have them, or \"Force Refresh All Hostnames\" to clear the cache and re-resolve all hostnames.<\/p><\/dd>\n\n<\/dl>\n\n<!--section=changelog-->\n<h3>Version 1.4.3<\/h3>\n\n<ul>\n<li><strong>New<\/strong>: Advanced DNS lookup system with DNS over HTTPS (DoH) support<\/li>\n<li><strong>New<\/strong>: PTR record resolution for hostname identification of blocked IPs<\/li>\n<li><strong>New<\/strong>: Background hostname resolution via WordPress cron jobs<\/li>\n<li><strong>New<\/strong>: Manual hostname update buttons in admin interface<\/li>\n<li><strong>New<\/strong>: Force refresh all hostnames feature with cache clearing<\/li>\n<li><strong>New<\/strong>: Configurable block duration (days) in Options tab<\/li>\n<li><strong>New<\/strong>: Enhanced admin interface with hostname display in blocked bots table<\/li>\n<li><strong>New<\/strong>: Debug information panel for hostname resolution troubleshooting<\/li>\n<li><strong>New<\/strong>: Support for both IPv4 and IPv6 PTR lookups<\/li>\n<li><strong>Enhancement<\/strong>: Improved blocked bots table with hostname column<\/li>\n<li><strong>Enhancement<\/strong>: Better identification of blocked bots through hostname resolution<\/li>\n<li><strong>Enhancement<\/strong>: Automatic database migration system for hostname column<\/li>\n<li><strong>Enhancement<\/strong>: Fallback DNS resolution methods for better compatibility<\/li>\n<li><strong>Enhancement<\/strong>: DNS query caching for improved performance<\/li>\n<li><strong>Fix<\/strong>: Updated queries to gracefully handle missing columns during migration<\/li>\n<li><strong>Fix<\/strong>: Added backward compatibility for existing installations<\/li>\n<li><strong>Fix<\/strong>: Improved error handling and logging for database migrations<\/li>\n<\/ul>\n\n<h3>Version 1.4.2<\/h3>\n\n<ul>\n<li>Fixed Internal.LineEndings.Mixed in class-edhbb-blocker.php<\/li>\n<\/ul>\n\n<h3>Version 1.4.1<\/h3>\n\n<ul>\n<li>Fixed blank admin page<\/li>\n<\/ul>\n\n<h3>Version 1.4.0<\/h3>\n\n<ul>\n<li>Refactored all class names to use the <code>EDHBB_<\/code> prefix to prevent conflicts.<\/li>\n<li>Updated the \"Tested up to\" WordPress version to 6.8.<\/li>\n<li>Corrected the \"Requires PHP\" version to 7.4 for consistency.<\/li>\n<\/ul>\n\n<h3>Version 1.3.0<\/h3>\n\n<ul>\n<li>Bringing up to WordPress coding standards<\/li>\n<\/ul>\n\n<h3>Version 1.2.3<\/h3>\n\n<ul>\n<li>Added instructions to the \"Help\" tab for excluding the unique trap URL from caching plugins.<\/li>\n<\/ul>\n\n<h3>Version 1.2.2<\/h3>\n\n<ul>\n<li><strong>Fix<\/strong>: Block duration is now a configurable setting<\/li>\n<\/ul>\n\n<h3>Version 1.2.1<\/h3>\n\n<ul>\n<li><strong>Fix<\/strong>: Fixing apache error doc<\/li>\n<\/ul>\n\n<h3>Version 1.2.0<\/h3>\n\n<ul>\n<li><strong>New<\/strong>: Added custom error page<\/li>\n<\/ul>\n\n<h3>Version 1.1.2<\/h3>\n\n<ul>\n<li><strong>Fix<\/strong>: Now adding htaccess rule at top of file<\/li>\n<\/ul>\n\n<h3>Version 1.1.1<\/h3>\n\n<ul>\n<li><strong>Fix<\/strong>: Trigger htaccess rules to have higher priority<\/li>\n<\/ul>\n\n<h3>Version 1.1.0 - Major Feature Release<\/h3>\n\n<ul>\n<li><strong>New<\/strong>: Server-level IP blocking via <code>.htaccess<\/code> file management<\/li>\n<li><strong>New<\/strong>: \"Options\" tab in admin interface for configurable blocking methods<\/li>\n<li><strong>Enhanced<\/strong>: Dual-level blocking system (server + PHP) for maximum effectiveness<\/li>\n<li><strong>Added<\/strong>: Automatic <code>.htaccess<\/code> file management with unique markers<\/li>\n<li><strong>Added<\/strong>: Smart whitelist filtering for <code>.htaccess<\/code> rules<\/li>\n<li><strong>Improved<\/strong>: Admin interface with enhanced tabbed navigation<\/li>\n<li><strong>Enhanced<\/strong>: Performance optimization with server-level blocking<\/li>\n<li><strong>Added<\/strong>: Nginx compatibility with PHP-only blocking fallback<\/li>\n<li><strong>Updated<\/strong>: Comprehensive documentation including <code>.htaccess<\/code> functionality<\/li>\n<li><strong>Added<\/strong>: Better error handling and logging for <code>.htaccess<\/code> operations<\/li>\n<li><strong>Added<\/strong>: Automatic cleanup of <code>.htaccess<\/code> rules on deactivation<\/li>\n<\/ul>\n\n<h3>Version 1.0.4<\/h3>\n\n<ul>\n<li>Adding min PHP + WordPress requirements, tested on WordPress 6.8.2<\/li>\n<\/ul>\n\n<h3>Version 1.0.3<\/h3>\n\n<ul>\n<li>Updated README and license<\/li>\n<\/ul>\n\n<h3>Version 1.0.2<\/h3>\n\n<ul>\n<li>Added plugin action links for easier access to settings<\/li>\n<\/ul>\n\n<h3>Version 1.0.1<\/h3>\n\n<ul>\n<li>Changed author name<\/li>\n<\/ul>\n\n<h3>Version 1.0.0<\/h3>\n\n<ul>\n<li>Initial plugin release<\/li>\n<li>Core bot detection and blocking functionality<\/li>\n<li>Admin interface for managing whitelisted IPs and blocked bots<\/li>\n<li>Automatic robots.txt integration<\/li>\n<\/ul>","raw_excerpt":"A smart WordPress plugin that automatically blocks malicious bots and crawlers that ignore your site&#039;s robots.txt file.","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/bal.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin\/250452","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bal.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin"}],"about":[{"href":"https:\/\/bal.wordpress.org\/plugins\/wp-json\/wp\/v2\/types\/plugin"}],"replies":[{"embeddable":true,"href":"https:\/\/bal.wordpress.org\/plugins\/wp-json\/wp\/v2\/comments?post=250452"}],"author":[{"embeddable":true,"href":"https:\/\/bal.wordpress.org\/plugins\/wp-json\/wporg\/v1\/users\/encodedothost"}],"wp:attachment":[{"href":"https:\/\/bal.wordpress.org\/plugins\/wp-json\/wp\/v2\/media?parent=250452"}],"wp:term":[{"taxonomy":"plugin_section","embeddable":true,"href":"https:\/\/bal.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_section?post=250452"},{"taxonomy":"plugin_tags","embeddable":true,"href":"https:\/\/bal.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_tags?post=250452"},{"taxonomy":"plugin_category","embeddable":true,"href":"https:\/\/bal.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_category?post=250452"},{"taxonomy":"plugin_contributors","embeddable":true,"href":"https:\/\/bal.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_contributors?post=250452"},{"taxonomy":"plugin_business_model","embeddable":true,"href":"https:\/\/bal.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_business_model?post=250452"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}