Support » Plugin: Wordfence Security - Firewall & Malware Scan » Worst WAF (web application firewall) there is. Glad to be rid of it.

  • softweir


    Despite bringing up serious bugs with the authors – like how ALL login bans are 10 minutes no matter what settings are set, or login triggers to ban based on “admin” simply does not work; I was basically told that it’s my problem and there’s no solution. And the same issue happens on brand new WordPress sites. Clearly they just don’t care.

    And when I realized I divulged personal information, the team declined to erase or modify any of my posts.

    If a firewall plugin can’t possibly ban legit hackers for longer than 10 minutes, why would anyone bother with this product? And only offering technical support to pro users is pretty useless.

    Sad, because I was willing to pay pro and have it on all my websites.

    Thanks anyway.

Viewing 1 replies (of 1 total)
  • Plugin Author WFSupport


    Thanks for your thoughts about the plugin. The length of a ban can be adjusted on the Firewall > All Firewall Options page. If that value cannot be saved it sounds like Wordfence is not able to save to our database table which could be a permissions or a corrupt table issue.

    As to your claim about our not deleting your data in the forums, I believe you are referring to this year old post:
    Wordfence does not moderate these forums. The moderators are volunteers at Not removing posts is their policy and we have no say whatsoever in what their rules are and how they enforce them. You can reach out in their slack forums if you would like to take it up with them at (I think). Further the link that is there (the only one I think might be an issue and points to xmlrpc) doesn’t even work.

    In closing, I’d ask you try the firewall again as many many improvements have been made over the past year. I think your opinion might change if you did.


Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this review.