Support » Plugin: BruteProtect » Good alternative to BruteProtect?

  • Resolved Soprano

    (@soprano)



    Hello,

    Now that Bruteprotect has been acquired by Jetpack unfortunately I’ll have to stop using it.

    I’ve seen the ‘performance myth’ post about Jetpack but after installing it and trying it solely with the BruteProtect module enabled, I’ve seen a increase in load time compared to the pre-jetpack version.

    My business is very load time conscious, with over 10k unit hits a day I need something lightweight but efficient as BruteProtect was. Plugins like Limit Login Attempts are a bit too simple in comparison and have no ‘crowd protection’ feature.

    So is there anything lightweight and as effective as BruteProtect is? I’m willing to pay if it’s a premium plugin.

    Thank you,

    Warmly,

    Matthew

    https://wordpress.org/plugins/bruteprotect/

Viewing 14 replies - 1 through 14 (of 14 total)
  • Also have the same question. Sad situation that we are being forced to install JetPack bloatware just to get the benefits of BruteProtect.

    – Scott

    same 🙁

    same for me also … following thread to learn of any alternatives.

    ThemeMee

    (@thememee)

    We’re having good success so far with WordFence. And they have an option that seems to offer similar functionality: http://docs.wordfence.com/en/Wordfence_options#Participate_in_the_Real-Time_WordPress_Security_Network.

    Like many others, we’re disappointed in the move to incorporate BruteProtect into JetPack.

    Plugin Contributor Stephen Quirk

    (@sdquirk)

    Soprano, can you give me more information on what you’re seeing for speed issues? If you install Jetpack and only run the Protect feature, it really should be very similar to BruteProtect. There can be a delay caused by hitting the API servers, but those are currently the same servers for both plugins. If you haven’t tried Jetpack for some time, it’s worth giving a try for some of the new features and improved experience.

    sneader

    (@sneader)

    I tried JetPack and it took a long time to de-crap it… for some reason, by default, JetPack enabled a whole slew of things that most users would not care for or need. If you want your site to fly as fast as a JetPack, I do not know why one would want to force-enable all these things, that are not helping to speed up the site.

    I’m trying to keep an open mind, as we really REALLY like BruteProtect.

    – Scott

    Plugin Contributor Stephen Quirk

    (@sdquirk)

    Yes, many items are turned on by default, but they can be turned off very easily.

    Soprano

    (@soprano)

    Everything was turned off but it still adds extra weight to the load time.

    It’s alright though, I’ve purchased the Securi Firewall which so far is doing an excellent job.

    “Yes, many items are turned on by default, but they can be turned off very easily.”

    gotta call some BS on that… having to go into a plugin and deactivate 15 modules manually each time…

    Multisite…

    looking and not finding a way to have default modules

    and… half the time connecting to wordpress.com from multisite subsite crashes my network… that = fail

    all I want is Bruteprotect

    So… WordFence? Doing that already. Hoping to continue to have a second line of defense… Anyone have any other alternatives they’ve started using? How about at the server level? (I have numerous clients with an aversion to JetPack for site speed reasons.)

    Hello

    Is Bruteprotect still protect us? because when I open the debug window I read this:
    “Your site is having trouble connecting to the BruteProtect API.”

    And, sorry, but I agree with other people here: Jetpack sucks… and if Mod Security is enable on our server jetpack can not be installed (we have to go to our cPanlel to desactive mod security to be able to install jetpack)

    I was happy with one single plugin to do one job, now I have a plugin with a ton a options that are all disabled (except the security), and a plugin that load extra stuff we do not not need… 🙁

    Jeremy Herve

    (@jeherve)

    Jetpack Mechanic 🚀

    Is Bruteprotect still protect us? because when I open the debug window I read this:
    “Your site is having trouble connecting to the BruteProtect API.”

    It doesn’t protect you anymore. The service remained available until the end of 2015, but won’t protect your site now. We’d recommend switching to Jetpack and its Protect module instead.

    if Mod Security is enable on our server jetpack can not be installed (we have to go to our cPanlel to desactive mod security to be able to install jetpack)

    Instead of completley deactivating Mod Security, I’d recommend getting in touch with your hosting provider, and asking them to edit their Mod Security rules to allow you to use Jetpack, while staying protected by Mod Security. That’s how the most popular hosting providers work today.

    a plugin that load extra stuff we do not not need… 🙁

    It’s worth noting that once a Jetpack module is deactivated, its code isn’t loaded on your site. It might consequently be worth enabling Jetpack, but deactivating all the modules you don’t need.

    ———

    Since I’m commenting on that old thread, I’ll try to address some of the questions above, albeit a bit late, sorry about that.

    gotta call some BS on that… having to go into a plugin and deactivate 15 modules manually each time…

    Multisite…

    looking and not finding a way to have default modules

    If you’re looking for a way to programatically enable / disable / remove Jetpack modules, this should help:
    https://jeremy.hu/customize-the-list-of-modules-available-in-jetpack/

    half the time connecting to wordpress.com from multisite subsite crashes my network… that = fail

    It might be worth checking your error logs to find out more about the problem. Jetpack can be used on Multisite networks, but if you find a bug feel free to let us know!

    Thanks Jeremy for your helpful article.

    Adding this line to my child theme functions.php let me activate Jetpack plugin without adding Jetpack features by default.

    add_filter( ‘jetpack_get_default_modules’, ‘__return_empty_array’ );

    In the article it suggested trying Development mode. I’m noting here for other BruteProtect fans that this won’t let you activate the Protect feature. You need a WordPress.com account for that.

    And a comment about Jetpack bloat. My site is now loading:
    – jetpack.css
    http://s0.wp.com/wp-content/js/devicepx-jetpack.js

    Even though I am not using any Jetpack frontend features, ONLY Protect. The performance hit isn’t much, but it is annoying! If you have a suggestion on how to prevent those loading, I’d love to hear it.

    Jeremy Herve

    (@jeherve)

    Jetpack Mechanic 🚀

    – jetpack.css

    That’s indeed done by design. We concatenate all Jetpack’s CSS files into a master file, jetpack.css. Since that file includes CSS for multiple modules, it has to be loaded all the time, instead of just when a specific module is active.

    If you’d rather not use Jetpack’s concatenated CSS, you can add the following in your theme’s functions.php file, or in a functionality plugin:

    add_filter( 'jetpack_implode_frontend_css', '__return_false' );

    Once you’ve done so, each CSS file will be added when necessary, when you enable the module.

    http://s0.wp.com/wp-content/js/devicepx-jetpack.js

    That’s indeed confusing. devicepx was created to add Retina image support to your site. It’s loaded as soon as Jetpack is active, but isn’t part of a specific module. We’ve been thinking about making it a module, but we might actually end up removing the file altogether, since WordPress itself improved image management in 4.4. We plan on making that decision for the next major release of Jetpack, 4.1. You can follow our progress in the GitHub issues I linked to.

    Until then, you can dequeue the script like so:

    function dequeue_devicepx() {
        wp_dequeue_script( 'devicepx' );
    }
    add_action( 'wp_enqueue_scripts', 'dequeue_devicepx', 20 );
Viewing 14 replies - 1 through 14 (of 14 total)
  • The topic ‘Good alternative to BruteProtect?’ is closed to new replies.