WordPress Website Security Protection. Website security protection against: XSS, RFI, CRLF, CSRF, Base64, Code Injection and SQL Injection hacking...
I use BPS on practically all my websites that use Apache (BPS doesn't work under nginx), mostly as a preventive measure: none of them was ever hacked. But there is always a first time, and, to avoid that "first time", I make sure that BPS does it job. So far, so good!
BPS is a little tricky to configure. It has many options and requires several steps to complete the initial installation; after each upgrade, it requires a manual "reset" (easy to do) to make sure that all files are properly in place. It's also a bit tricky to make sure that it plays nicely with other plugins which might reconfigure .htaccess (like most cacheing plugins). Its interface departs completely from the usual WordPress UI standards and looks a bit anachronistic. Those are the only reasons for giving it just 4 out of 5 stars; at the core, what it does — protecting your website from intrusion — it does beautifully, and without any loss of performance.
As WordPress increases in popularity, and in spite of its already many built-in security features, hackers become increasingly more persistent in finding ways through WordPress's standard security. BPS is a welcome addition that will keep hackers away, as long as it is properly installed and maintained.
According to the log files, I need this plug in.
According to the plugin files, I have no clue what anything is, does, or needs to happen.
I wish the developers could write at least one version of their instructions that WP "beginners" could understand.
I wish that updating the plugin didn't set me back to zero so I have to fight with this problem every time they update.
Does a good job.
After upgrading it blew away my .htaccess file in my public_html folder. In my case I would have preferred to have done an uninstall then a fresh install.
"50,000 customers can't be wrong!" It just didn't work for us.
Tech support was good, though. Except support incorrectly told me my site's been down for a week (it wasn't, he was looking at a corrupt Google cache file), and a moderator challenged me on the fact that my install failed.
Based on a previous version's log file, our site is getting hammered with all sorts of bad guys. So I guess it's doing its job.
I'm a bit of a novice though so I guess everyone including me was having a bad day.
1) Not user friendly interface - bloated text in description of buttons/features, difficult organized, obscure...
2) Not works on DSO servers.
3) Not delete DB tables when remove plugin.
But very well support!
Thank you for BPS.
The plugin is great because of the various security options it offers. But suddently when I want to write a post or page the "visual/text" button has disappeared and qtranslate does not work either.
I tried deactivating the plugin but nothing happened. So now I do not know what to do...
Anyone got an idea how to fix it without undoing the new created files by BPS Security?
I've been using BulletProof Security on a few Werdpress sites for a while now and haven't had ANY issues with it, once its been setup. I found getting it properly setup and working with some other WordPress plugins was a bit cumbersome. However, once I got all that worked out, it's been very unobtrusive. One addition I would like to see is some way of logging security violation attempts or attacks. This way, users of this plugin would have some kind of sense it's actually doing what we want it to do. :)
Other than that, I think it's a "must have" plugin for EVERY WordPress installation!
You must log in to submit a review. You can also log in or register using the form near the top of this page.