WordPress.org

Ready to get started?Download WordPress

Forums

NinjaFirewall (WP edition)
feature comparison (6 posts)

  1. Ovidiu
    Member
    Posted 1 year ago #

  2. nintechnet
    Member
    Plugin Author

    Posted 1 year ago #

    It seems that the plugin you mentioned is only acting like... a plugin.
    That is the problem with most security plugins:
    1) requests will need to get through WordPress before reaching the plugin (HTTP server -> PHP -> WordPress -> plugin). That means that the core part of WordPress is not protected as it needs to be loaded first.
    2) it will protect the index page only (and probably the admin index too). It there is a vulnerable PHP script on the server or a backdoor, it won't be protected.

    NinjaFirewall will protect any PHP script and will hook the request before WordPress is loaded (HTTP server -> PHP -> NinjaFirewall -> WordPress).
    It does not rely on WordPress to work. Only the admin UI needs WordPress for the installation and configuration.

  3. Ovidiu
    Member
    Posted 1 year ago #

    Thanks. I had a look here: http://ninjafirewall.com/overview.html and was unsure whether I should go for the free edition or the WordPress edition.

    I am on my own root server and only host WP.

    WP or Free? It looks like the WP edition has more features?

  4. nintechnet
    Member
    Plugin Author

    Posted 1 year ago #

    The Free and Pro versions have more features and can handle multiple PHP applications (e.g. an OSCommerce shop + a WP or Joomla blog etc).
    But if you need protection for WordPress only, the WP edition should be perfect.

  5. Ovidiu
    Member
    Posted 1 year ago #

    So do I get this right? You had a look at that other plugin and it acts like a plugin?

    Because I saw this article: http://www.howtoforge.com/intrusion-detection-for-php-applications-with-phpids

    explaining how to load PHPIDS with every PHP script. That's exactly the way ninjafirewall does it.

    What about the blocking mechanisms both firewalls use?

  6. nintechnet
    Member
    Plugin Author

    Posted 1 year ago #

    If you can use PHPIDS that way, then it will work too. But I don't know whether you still need the mute-screamer plugin or not?

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic