Title: DawsonyWeb – Security Shield Author: DawsonyWeb Published: May 26, 2026 Last modified: May 26, 2026 --- Search plugins ![](https://ps.w.org/dawsonyweb-security-shield/assets/banner-772x250.png?rev=3548776) ![](https://ps.w.org/dawsonyweb-security-shield/assets/icon-256x256.png?rev=3548776) # DawsonyWeb – Security Shield By [DawsonyWeb](https://profiles.wordpress.org/dawsonyweb/) [Download](https://downloads.wordpress.org/plugin/dawsonyweb-security-shield.1.0.1.zip) * [Details](https://wordpress.org/plugins/dawsonyweb-security-shield/#description) * [Reviews](https://wordpress.org/plugins/dawsonyweb-security-shield/#reviews) * [Installation](https://wordpress.org/plugins/dawsonyweb-security-shield/#installation) * [Development](https://wordpress.org/plugins/dawsonyweb-security-shield/#developers) [Support](https://wordpress.org/support/plugin/dawsonyweb-security-shield/) ## Description DawsonyWeb Security Shield protects your WordPress site from comment spam and unauthorised API access. **Comment Protection** * Master switch to completely disable all comments (form, REST API, XML-RPC, feeds) * Invisible honeypot field to trap bots * Minimum comment length enforcement * Block all links or cap links per comment * Require login to comment * Keyword/phrase blocklist **API & REST Hardening** * Disable XML-RPC entirely (removes X-Pingback header too) * Hide `/wp/v2/users` endpoint to prevent username harvesting * Require authentication for all REST API requests * Optionally disable the REST API completely * Block author enumeration via `/?author=N` **Spam Rules** * Per-IP comment rate limiting (configurable max and time window) * IP address blocklist — blocked IPs receive a 403 on any front-end request * Rolling activity log (last 200 events) ## Installation 1. Upload the `dawsonyweb-security-shield` folder to `/wp-content/plugins/`. 2. Activate the plugin through the Plugins menu in WordPress. 3. Go to Security Shield in the admin menu to configure. ## Reviews There are no reviews for this plugin. ## Contributors & Developers “DawsonyWeb – Security Shield” is open source software. The following people have contributed to this plugin. Contributors * [ DawsonyWeb ](https://profiles.wordpress.org/dawsonyweb/) [Translate “DawsonyWeb – Security Shield” into your language.](https://translate.wordpress.org/projects/wp-plugins/dawsonyweb-security-shield) ### Interested in development? [Browse the code](https://plugins.trac.wordpress.org/browser/dawsonyweb-security-shield/), check out the [SVN repository](https://plugins.svn.wordpress.org/dawsonyweb-security-shield/), or subscribe to the [development log](https://plugins.trac.wordpress.org/log/dawsonyweb-security-shield/) by [RSS](https://plugins.trac.wordpress.org/log/dawsonyweb-security-shield/?limit=100&mode=stop_on_copy&format=rss). ## Changelog #### 1.0.1 * Compatibility: tested up to WordPress 7.0. #### 1.0.0 * Initial release. ## Meta * Version **1.0.1** * Last updated **1 day ago** * Active installations **Fewer than 10** * WordPress version ** 6.0 or higher ** * Tested up to **7.0** * PHP version ** 8.0 or higher ** * Tags * [comments](https://wordpress.org/plugins/tags/comments/)[rest-api](https://wordpress.org/plugins/tags/rest-api/) [security](https://wordpress.org/plugins/tags/security/)[spam](https://wordpress.org/plugins/tags/spam/) [xmlrpc](https://wordpress.org/plugins/tags/xmlrpc/) * [Advanced View](https://wordpress.org/plugins/dawsonyweb-security-shield/advanced/) ## Ratings No reviews have been submitted yet. [Your review](https://wordpress.org/support/plugin/dawsonyweb-security-shield/reviews/#new-post) [See all reviews](https://wordpress.org/support/plugin/dawsonyweb-security-shield/reviews/) ## Contributors * [ DawsonyWeb ](https://profiles.wordpress.org/dawsonyweb/) ## Support Got something to say? Need help? [View support forum](https://wordpress.org/support/plugin/dawsonyweb-security-shield/)