Upgrading from WordPress Firewall v1.25
- Deactivate the plugin WordPress Firewall v1.25.
- Delete the plugin from your plugins folder.
- Install WordPress Firewall 2 (see installation instructions).
- Your previous settings will be restored and used.
What does this thing actually do?
Lots of stuff - here's the list:
- Detect, intecept, and log suspicious-looking parameters — and prevent them compromising WordPress.
- Also protect most WordPress plugins from the same attacks.
- Respond with an innocuous-looking 404, or a home page redirect.
- Optionally send an email to you with a useful dump of information upon blocking a potential attack.
- Turn on or off directory traversal attack detection.
- Turn on or off SQL injection attack detection.
- Turn on or off WordPress-specific SQL injection attack detection.
- Turn on or off blocking executable file uploads.
- Turn on or off remote arbitrary code injection detection.
- Add whitelisted IPs.
- Add additional whitelisted pages and/or fields to allow pages/plugins/etc to get through when desirable.
- Optionally configure as the first plugin to load for maximum security.