Plugin Reviews

6Scan Security

6Scan Security provides comprehensive enterprise-grade security with frequent site scans, powerful firewall, automatic backup, web analytics and much


22 reviews
Average Rating
3 out of 5 stars
Bait and Switch
By , for WP 3.4.2

When I first installed 6Scan Security, it collected my e-mail address, which I found mildly objectionable. However I overlooked this and accepted the Terms Of Use. I'll note that I wasn't able to actually access the 6Scan Security TOS, so perhaps I agreed to letting them have my firstborn.

The software did its thing, then announced to me that I had vulnerabilities. I could have them fixed for a price. This is where I draw the line.

I have no problem paying for services, if I decide I want them and I'm aware of the price. I object to "free" software that hooks you into trying it, only to let you know *afterwards* that you've got to pay. That's called "Bait and Switch," and is dishonest.

I feel that if a product is worthwhile, Bait and Switch is unnecessary. If it *isn't* worthwhile, Bait and Switch is immoral. I would think that there aren't many people who like being fooled, and that Bait and Switch probably isn't an effective marketing technique.

I removed the software. They need to try a different approach. Unfortunately, I'm not likely to try this company's products again, considering this unpleasant experience.

6scan stole my private info
By , for WP 3.4.2

I installed and activated the 6scan plugin from the WordPress Repository. When I went to the setting page for 6scan I saw it wanted me to "Confirm my email to continue" and stated "By clicking Agree, I agree to 6Scan's Terms of use." (I did NOT click "Agree".
I deactivated the plugin and a few days later I got an unsolicited email from no-reply@6scanalerts.com with the subject "6Scan cannot contact your plugin at http://mydomain.com". I was shocked and upset that they had forcibly taken my email address from my WP Database without my permission.

This Clearly violates the WordPress Plugin Repository Plugin Guidelines:

No unauthorized collection of user data. For example, sending the admin's email address back to your own servers without permission of the user is not allowed; but asking the user for an email address and collecting if they choose to submit it is fine. All actions taken in this respect MUST be of the user's doing, not automatically done by the plugin.

This I am writing this to warn all prospective users about this immoral (if not illegal) abuse of private information and also in the hopes that I get the attention of the developers of this plugin so that they may change their tactics.

You must log in to submit a review. You can also log in or register using the form near the top of this page.