The easiest, most effective way to secure WordPress in seconds.
I liked "Better WordPress Security" better. I didn't have the headaches I get now. But I have figured out how not to have my email box swollen with constant Brute Force issues. Thousands of them, in fact. So we should be using this thing.
Away Mode and permanent ban of hosts is the gold that makes it possible to block the jerk-offs from Beijing, St. Petersburg, the onion routers zinging in from the middle of Siberia...etc. etc. But it's a major pain to have to always be in Away Mode. What's worst about it is I travel too much, don't always remember when I should log in to change my Away time.
But the funky work around is this--go via ftp to your plug-ins folder. It's in there, still under the same folder name titles "Better WP Security". Just rename that folder to whatever. Then you can get back into your own Dashboard whenever you need to. Then don't forget to Whitelist your IP in Settings.
Furfacksake, I wish the support form would be more robust so we can see better implementation of what's basically a good set of tools. They just need refining. There is a suggestion forum--https://trello.com/c/EDSRmJvT/41-start-here-what-to-expect-how-to-request-features--that seems to be the place where we can beg for a better set of features in the free version. I'm not spending my $ on anything till I see the basics work a lot better than this.
It's best top plugin that save our web from hacked and malware.
i recommended it to you for wordpress user.. :D
[ link redacted, please do not post links in reviews ]
3 stars for good features, missing 2 stars for stuffing plugin with promotional stuff and breaking websites for no reason.
iThemes purchased a Better WP Security ... all well and good. Before iThemes accepted responsibility for this plugin, it was, in fact the best, most well thought out security plugin I'd ever seen.
It remains to be seen if the new owners are up to maintaining the quality of the code ... so far, there are problems ... we'll see if they get them fixed, but being locked out of the back end was pretty infuriating.
seems 4.0.7 fixed most of the issues from the 4.0.5 ...
3 stars for all the mess with 4.0.5
Wish i never updated as away mode just does not work.
Widget Weaver II Login no longer works with Better WP Security Version 3.6.5, is there a way to retriev Version 3.6.4 ?
Someone who wants to brute force attack your site can just use the http://www.yourdomain.com/wp-login.php?loggedout=true and bypass the hide backend function. Since /wp-login.php?loggedout=true takes you directly to your login page and also shows the secret key as well.
Searching on google shows that the plugin authors knows of this issue for long time. And still no solution to it.
Thou its a good plugin thou. But this non functional solution to the hide backend makes me give it 3 stars. Since it creating a lot of bad login attempts from Brute Force Attacks.
It was one of my must-installed plugin. Unfortunately, there are no free supports anymore from the developer team. You can see on the support forum, lots issues being unanswered, many serious problems still remain unsolved. And one of the disadvantage of using this plugin is it requires lots server resources which are not allowed by many shared hostings.
Fortunately, I found a better than this Better WP Security plugin.
With the transfer of Better WP Security source codes to iThemes, this signals an end to a free version and to a more Alacarte paid version. To bad - but it's here.
You must log in to submit a review. You can also log in or register using the form near the top of this page.