MJP Security Tools is a plugin designed to fix a lot of WordPress security issues, as well as providing extra support.
Turns off SSL for the Flash uploader when you have FORCE_SSL_ADMIN enabled, in
case you are having trouble getting it to work ("IO Error").
Ensures logins are always done via SSL on a subdomain of the master domain, but access to custom domains are always over HTTP, to avoid cert errors.
Single sign on (SSO) for a custom domain site, where the admin panel is on an SSL-secured subdomain. For WordPress Multisite.
Configure an external SMTP server in your config file.
HSTS is HTTP Strict Transport Security, a mean to enforce using SSL even if the user access the site through HTTP and not HTTPS.
Require a browser su
This plugin relies on wordpress automatic embedding to allow you to embed youtube videos using the youtube-nocookie.com domain and with SSL encryption
Configure WordPress mailer with DKIM signing and delivery via Amazon SES, GMail or SMTP over SSL/TLS.
Configure a mail server you want to use for mailing in WordPress
WordPress HTTPS Test will test your WordPress pages for non HTTPS elements.
Allows you to easily require SSL for specific pages.
Configure SMTP mailing in WordPress, including support for sending e-mail via SSL/TLS (such as GMail).
Redirects all HTTPS traffic to HTTP, except for specific exceptions
A widget displaying SSL certificate expiration dates.
Check to see if the page has the "force_ssl" meta tag, if it does it will send the user to the SSL side. It will also make sure to load any
RSS link for this tag.