The easiest, most effective way to secure WordPress. Improve the security of any WordPress site in seconds.
The authors of the plugin have good intentions and the overall concept of the plugin is good -- some good security ideas.
But the massive .htaccess fill this plugin will generate just isn't worth it to me; there are other security plugins I'd rather use.
Too many .htaccess rules inevitably slow down your website; I don't care what gtmetrix, page insights, pingdom, etc. say ...
The idea behind the plugin is good and many of the features were good and offer great ideas; to me, the massive .htaccess file it creates isn't worth it.
Just like the user "julianap", I had some issues, specially with my database. Conflicts between plugins after I installed it.
Now it's working, but I won't recommend it to someone who is not comfortable messing with code and stuff, if something wrong happens.
apart from that, it's a good way to make your website more secure! ;)
this has helped a bit thanks
i have installed it on all my websites which i manage but one of got hacked regardless of the the security plugin. I was away for a week and came my site none existent.
I like from this plugin how it block users from accessing the wp-login.php if they type it directly in the address bar, however it has it flaws in its integration with the meta widget. I found the wp-login.php can not be hidden or blocked all the times, it can be accessed directly from some links in the meta widget, the string and the chosen word will not show up in the address bar. It only block the access when wp-login.php is typed directly on the address bar, which is great, but I would like to see this plugin to mask somehow the redirected links. Instead of yoursite.com/wp-login.php?stringblablabla... just show yoursite.com/chosenword. And eliminate that random string which seems for me unnecessary.
3 stars for me.
Works great on one site. Breaks another. Don't know why this is. But when it works, it works great.
Plugin works but we have lot of visitors who got locked out on the following files:
If we put this files in exclude files (option: DETECT) it's the same thing.
Too much false or bad detections
This is a great plugin but lots of its features breaks lots of other plugins/ themes and/or lock you out of your site, generate 500 errors etc (this happened to me many times - it wasn't a problem really, I just had to keep reverting .htaccess back to how it was before this plugin changed it).
In short, takes a bit of time to get to know, but works well once configured for your set-up.
I use this plugin on many of the sites I develop. Worth taking a look at for sure.
You must log in to submit a review. You can also log in or register using the form near the top of this page.