A true Web Application Firewall to protect and secure WordPress.
NinjaFirewall sits between the attacker and WordPress. It can filter requests before they reach your blog and any of its plugins. This is how it works :
Attacker > HTTP server > PHP > NinjaFirewall > WordPress
And this is how all WordPress plugins work :
Attacker > HTTP server > PHP > WordPress > Plugins
Unlike other security plugins, it will protect all PHP scripts, including those that aren't part of the WordPress package.
NinjaFirewall does not require any root privilege and is fully compatible with shared hosting accounts. You can install it from your WordPress admin console, just like a regular plugin.
NinjaFirewall works with Nginx and others Unix-based HTTP servers (Apache, LiteSpeed etc). Its installer will detect it.
You do not need to make any modifications to your scripts. NinjaFirewall hooks all requests before they reach your scripts. It will even work with encoded scripts (ionCube, ZendGuard, SourceGuardian etc).
Since version 1.1.3, you can use an optional configuration file to tell NinjaFirewall where is located your WordPress configuration file, wp-config.php, if you moved it to another directory. Please follow these steps.
You can use an optional configuration file to tell NinjaFirewall which IP to use. Please follow these steps.
Your visitors will not notice any difference with or without NinjaFirewall. From WordPress administration console, you can click "NinjaFirewall > Status" menu to see the benchmarks and statistics (the fastest, slowest and average time per request). NinjaFirewall is very fast, optimised, compact, requires very low system resources and outperforms all other security plugins. By blocking dangerous requests and bots before WordPress is loaded, it will save bandwidth and reduce server load.
NinjaFirewall works on Unix-like servers only. There is no Windows version and we do not expect to release any.
Requires: 3.3.0 or higher
Compatible up to: 4.3.1
Last Updated: 2015-9-17
Active Installs: 7,000+
9 of 22 support threads in the last two months have been resolved.
Got something to say? Need help?