Hi @mpally
I hope you’re well today!
I understand that you are referring to the lockout screen that Defender shows if a given IP/country is not allowed to access the site, right?
I checked and while Defender indeed is using Google Fonts on that page, apparently we don’t “enqueue” these fonts (which is most likely related to how the page is served to prevent “execution” of most of essential parts of WordPress) but there seems to be no filter hooks for that either and it’s all “hard coded”.
Unfortunately, this also means that at the moment, the only way to change that would be to make a change directly in plugin’s code.
Note: we do not recommend making changes in plugin’s code; this particular one is a simple and rather safe change but still – it will get reverted upon every plugin update and would have to be re-applied until the fix is included in the plugin.
If you’d like to give it a go, the change would in the file
/wp-content/plugins/defender-security/scr/view/ip-lockout/locked.php
There’s this code at the top of the file
<link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Roboto+Condensed:400,700|Roboto:400,500,300,300italic">
<link rel="stylesheet" href="<?php echo defender_asset_url( '/assets/css/styles.css') ?>">
and the simples way is to comment it out like this:
<!--<link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Roboto+Condensed:400,700|Roboto:400,500,300,300italic">-->
<!--<link rel="stylesheet" href="<?php # echo defender_asset_url( '/assets/css/styles.css') ?>">-->
or just remove.
Having said that, I understand your privacy concerns and I think it should be possible to change that or, even better, Defender should just use whatever default font the theme is using.
I have already reported it to our Defender Team so our developers would take care of it with one of future releases (but I don’t have ETA).
Kind regards,
Adam
