Support » Plugin: Duplicator - WordPress Migration Plugin » Not secure enough

  • Would be nice if it did not disable security plugins and remove the .htaccess file blocking several ip addresses.

    Beside that there are several security problems to solve before it would be good.

    I would like the responsibility to password protect the zip file generated i duplicated a site to several other sites but one gave problems and before i was finished my website where hacked and i was locked out from cPanel so i had to run a back from several hours earlier to gain access again.

    And i had been using deny from all – allow from my ip on all new sites duplicating too unless the last because it would not allow.

    That was offcourse because of the danish æøå in the domain name but still shows how vulnerable it is and how weak the security is of the plugin.

    Hope this will be solved in later versions as it is easy and good in other ways.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author Cory Lamle

    (@corylamleorg)

    Hey @time2,

    On step 1 of the installer under options is a checkbox labeled “Retain original .htaccess, .user.ini and web.config” this will prevent the plugin from changing anything with your .htaccess. By default, we have to reset the file otherwise 95% of most sites will be left with config files that were configured for other environments, causing a lot of issues.

    Most users are not advanced enough to edit and work the .htaccess file this is why it’s an option. Hope you reconsider your vote as a 1 star seems pretty critical as this has never been mentioned by any other users…

    Cheers~

    Ok thanks will try again it is just as good as paid plugins atleast 🙂

    Plugin Author Cory Lamle

    (@corylamleorg)

    Excellent! Please let us know what we can do to help move the vote from a 1 star…

    Cheers~

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Not secure enough’ is closed to new replies.