Manage easily, who is allowed to access your blog or certain parts of your blog or just improve the security of your installation
Please read the descriptions. This plugin is very restrictive. If you just click enable, you will not be able to access your blog. But the good news is, the plugin will not lock you out, click on personal settings and give yourself an authorization timestamp in the future and you are back in business.
It should be. Tell your caching script, that it should not cache logged in users (that should be the default) and clear the cache after configuration. Regular pages for guests should be cached. Restricted areas should not be cached, as the user must be logged in.
Because the test is somehow stupid. It's not enough to send a single "eval" or "base64" command without any parameters to your blog to hack it, but exactly this is simulated. You will have to send special url requests, that match more criterias than that. If you just deny access to urls, that have "eval", "base64" or "select union" in it, you will run into big problems e. g. you are a SQL Expert or Developer and want to write about these functions.