Plugin Directory

WordPress Firewall 2

This WordPress plugin monitors web requests to identify and stop the most obvious attacks.

Download Version 1.3

Upgrading from WordPress Firewall v1.25

  1. Deactivate the plugin WordPress Firewall v1.25.
  2. Delete the plugin from your plugins folder.
  3. Install WordPress Firewall 2 (see installation instructions).
  4. Your previous settings will be restored and used.

What does this thing actually do?

Lots of stuff - here's the list:

  • Detect, intecept, and log suspicious-looking parameters — and prevent them compromising WordPress.
  • Also protect most WordPress plugins from the same attacks.
  • Respond with an innocuous-looking 404, or a home page redirect.
  • Optionally send an email to you with a useful dump of information upon blocking a potential attack.
  • Turn on or off directory traversal attack detection.
  • Turn on or off SQL injection attack detection.
  • Turn on or off WordPress-specific SQL injection attack detection.
  • Turn on or off blocking executable file uploads.
  • Turn on or off remote arbitrary code injection detection.
  • Add whitelisted IPs.
  • Add additional whitelisted pages and/or fields to allow pages/plugins/etc to get through when desirable.
  • Optionally configure as the first plugin to load for maximum security.

Requires: 2.6.1 or higher
Compatible up to: 3.0.5
Last Updated: 2010-10-29
Downloads: 58,305

Average Rating

4 stars
(29 ratings)

Authors

Support

0 of 2 support threads in the last three weeks have been resolved.

Got something to say? Need help?

Compatibility

+
=
Not enough data

0 people say it works.
0 people say it's broken.

100,2,2
100,1,1
100,1,1
50,2,1
80,5,4
100,1,1
100,3,3
75,4,3
100,1,1
100,4,4
67,3,2
100,4,4
100,3,3
100,1,1
100,1,1
91,11,10
100,1,1
83,6,5