@markslang
When the Log Type setting is set to “File Only” the Security Log Information metabox on the Logs page will show:
To view logs within the plugin you must enable database logging in the plugin settings. File logging is not available for access within the plugin itself.
So there will not be an additional Security Log Data metabox with log data displayed on the Logs page.
And thus you will also not be able to clear the logs from the plugin.
If the above info answers your questions please mark this topic as ‘resolved’.
dwinden
Thanks, Dwinden. That answers my question. I am disappointed, however. Most other plugins with logs keep them in files and allow them to be viewed from within WordPress admin, including the iThemes BackupBuddy.
I have been using WordFence up to now, and it is not unusual for me to get lock outs where someone tries a variety of different login names and passwords repeatedly in a short period of time. Security Pro seems to have more features that are checked, which is why I am trying it.
@markslang
Personally I don’t worry at all about database growth.
By default logs are only kept for 14 days and it is configurable as well.
When installed the iTSec plugin creates a WP cron job that will regularly purge any older (default 14 days) log entries.
Also when the plugin is properly configured log entries added are minimal.
Many many many log entries added in a short period of time is a typical symptom of the plugin not properly configured…
dwinden
Thanks. I guess it makes sense that 14 days worth of logs should not be too bad.
By the way, I just looked and I have a log entry for changed files that has a very long list list of changes. I assume that is because I updated my theme and a plug in yesterday. A number of the changes were in directories wp-admin/network and wp-admin/js/ that seem to be various parameters of WordPress itself. These may have changed as part of the theme update, I suppose. How do you know when changes like that are normal and when they might be malicious? When I used to use Wordfence, it would compare WordPress and plugin files with the master copies at WordPress and report differences. It often showed changes like an update to the WordPress version supported that did not mean anything. However, I never saw these kinds of changes, even with theme updates, so maybe they are recognized as files that WordPress changes in normal running.
@markslang
Copy\paste the file changes part into a new topic and I’ll be more than happy to respond to it there.
I guess this topic can be marked as ‘resolved’.
dwinden
@markslang
It seems like something went wrong with your new topic.
Looks like the topic cannot be updated.
You might try and tag it with “modlook” in order to draw the attention of a moderator. Hopefully they will be able to help.
dwinden