Plugin Author
Paul
(@paultgoodchild)
Shield is but one part of your overall security for your site. Shield blocks certain malicious requests, offer administrative user protection, user login protection, user session management and even scans WordPress core files for content that shouldn’t be there.
But as I said, it’s only 1 part of the puzzle and often you’ll need to look beyond your WordPress site to your actually hosting account, hosting server, plugins, themes, hosting in isolation (or not)… many many things.
If you don’t trust Shield any longer, then as you suggest, you should grab another plugin. But your original problem remains – a fully holistic approach to security that factors in every layer of WordPress site hosting.
Really sorry to hear about your troubles and I hope you get it sorted. There is definitely more that we can do with Shield, and we’re actually working on new developments coming down the line, but again, it’s only one facet of the task that we must undertake…
I understand that it is more then just one plugin to keep the shit out but I thought that Shields Core file scanner should alert me if there was infected files. Here it hasn’t done that on any site. Is there some conditions when it can’t discover infections?
After yesterdays investigation I think I will use Wordfence for cleaning and scanning my sites but I think Shield will remain for spam, user and login protection. That part I’m satisfied with.
Plugin Author
Paul
(@paultgoodchild)
the only reason I can see the core file scanner not working is if your crons aren’t working, or the files in question weren’t core files.
Scanning for the presence of non-core files isn’t part of the scanner… that’s another feature we are building.
