Newbie: potential conflicts

  • Resolved Sheila

    (@sheilahoff)


    11 years, 11 months ago

    I’m a graphic designer and oversee 30+ client sites on a dedicated server. We’ve had a lot of brute-force attacks which is why I’ve been exploring these options.

    I currently have W3TC and Login Security Solutions installed and recently added WordFence. I was told to not let WF oversee login security. But you offer a feature I really like which is to block anyone who tries to login with “admin” as the user name.

    I’m wondering if is there any harm in letting WordFence do that AND still running LSS? Or is it better to choose one and stay with it.

    Same thing for W3TC. My server also has APC setup. I haven’t tried your Falcon caching. I’m assuming I’d need to completely remove W3TC before activating Falcon? And will it conflict with APC (php cache) on the server?

    Thanks,
    Sheila

    https://wordpress.org/plugins/wordfence/

Viewing 4 replies - 1 through 4 (of 4 total)
  • Thread Starter Sheila

    (@sheilahoff)

    11 years, 11 months ago

    I decided to completely remove W3TC and Login Security Solutions to go exclusively with Wordfence.

    Now I’m looking for guidance on the optimal settings for the firewall section in particular.I apparently set it too low and legitimate visitors were blocked.

    Plugin Author Mark Maunder

    (@mmaunder)

    11 years, 11 months ago

    Hi Sheila,

    Glad to have you as a user!

    APC is what is known as an opcode cache. That means that instead of PHP having to compile the code into machine instructions every time someone visits your site, APC stores that compiled code to save PHP having to do the compilation every time. So it’s very different to what Falcon does which is a “page cache”.

    Falcon stores the “rendered” version of your page which is what gets sent to the visitor so that your site does not have to generate it every time. Falcon is designed so that when a cached page is served, your site doesn’t execute any PHP at all – the web server just serves the cached page directly from disk without even executing PHP. So Falcon can make your site even faster than APC can because we save you from executing any PHP at all – rather than making PHP execute faster which is what APC does.

    Hope that makes sense.

    Now, regarding optimal settings. This really depends on how your site is used. I would start with very generous settings – particularly in the login security area (20 failures before lockout) and the Firewall Rules area (set everything to Unlimited to start unless you’re solving a specific problem).

    Let me know if I can help further. We’re always happy to gain another user, so welcome to the family.

    Regards,

    Mark.

    Thread Starter Sheila

    (@sheilahoff)

    11 years, 11 months ago

    Mark, than you so much. I am really trying to thwart brute force attacks as I seem to attract a lot of them with 30+ WP sites that I manage. And I’d like to get them all set to something that is secure and viable asap. I’ve only installed on less than a third of my sites. And yesterday I had an issue with a client getting locked out because I had things too strict. So I need some idea of where the sweet spot is for the firewall settings. Sounds like maybe 20 +/-….

    Plugin Author Mark Maunder

    (@mmaunder)

    11 years, 11 months ago

    Yes that would help. Let me know if we can be of further assistance.

    Regards,

    Mark.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Newbie: potential conflicts’ is closed to new replies.