I upgraded today from Better WordPress Security, which I have used for years and enjoyed, it's always done the job and been great.
Now, they sold to iThemes, who have messed the whole thing up.
I have spend the whole day from 5 am, to 3.50 am the next day, 1st April 2014, trying to fix it. I ended up un-installing the plugin, as it locked me out of my own site. I had to delete the folder.
I did a clean install of the new branded and different iThemes security, but like everyone else who has commented here, adding my own IP to the whitelist does nothing, it doesn't write to the .htaccess file with the updates. Yes my .htacess is chmod to 666. I am running on a dedicated server, the same server I have used BWS on for 2 years. But iThemes.. they have screwed this script up. I keep getting locked out of my site. And I also get the 'You don't have sufficient permissions to access this page' error. As well as many others. I activate iThemes Security and get this error 'The plugin generated 3528 characters of unexpected output during activation. If you notice “headers already sent” messages, problems with syndication feeds or other issues, try deactivating or removing this plugin.' so I de-activate it, but it just comes back when re-activating it. I am so tired, I wasted a whole 24 hours on this today, my eyes are popping out my sockets. This script should never have been released!!!!. Because it's all messed up, and it's of no use. I am going to put BWS back in, I still have an old backup, and I am hoping it will still be able to work. I see lots of WordPress sites getting hacked because of this.. The best plugin for WordPress ruined. You know this is why I came to the WordPress forums tonight, because I have tried everything and can't fix it. And that is when I seen, I am not the only person with this big problem. Like the other people, I never write bad of plugins, but this is just too big to not let other folks know. If you still are using BWS.. Do not upgrade!.
I don't usually leave negative reviews. Typically I just find a replacement and move on. However, I've been using Better WP Security for over 2 years with no major issues EVER. Every site I put it on was secure, and I could always access the site. Everything worked the way it was supposed to, and it did it well. And, if ever there was a problem (usually minor or a plugin conflict) the developer took the time to at least answer our questions in the forums.
Then iThemes stepped in.
I've never had a worse experience with a plugin causing issues site wide. Every time I activate the plugin - mind you with no hidden back-end and site lockouts COMPLETELY TURNED OFF - I get totally locked out from the site. I have white-listed my IP address, and reverted my site back to the original settings for my back-end and login. The only way back in to my site is to disable the plugin via FTP. If I want to try to edit settings on the plugin, I have to delete it and re-install it, which only works temporarily. Then, after a few hours, the site locks down again.
It has caused so much of an issue that I lost a $2,100 client contract because my site seemed unreliable, causing the potential client too much doubt in my abilities.
Don't, for the love of God, install this on your WordPress site. It will provide nothing but trouble. Sad to see such a good plugin turn so terrible so quickly.
Worked wonders before the update, then just like everyone else I was locked out. My custom login url no longer worked, and the /wp-admin was giving me PHP errors (missing required file).
To fix it you need to delete (or rename) your .htaccess file (then put in a blank one and make sure you update your permalinks once you're back in your admin panel), then delete (or rename) the entire iThemes crap plugin. Only then will you be able to access your admin panel.
Thankfully the developers were competent enough to make sure this plugin doesn't permanently break your site when the plugin breaks.
This was a great plugin until iThemes bought it. I upgraded it on the sites I use and it has caused 404 errors or blank pages on every site I upgraded. Please fix this plugin. It has gone from first to worst in a week.
This plugin will break your e-commerce site! What a terrible thing such a good plugin got screwed by renaming it and turning it over to ithemes...
This plugin will break your site if you upgrade to their latest version. So I would recommend users to not upgrade from the old version. It is best if you switch to a different security plugin.
I currently use the all in one wp security plugin and bulletproof security on my sites now. I had a few sites still using the better wp security. After upgrading to ithemes security, it has broken everything. Lot of users sites are broken after the upgrade and there is no response from the developer!
this plugin doesn't work...
avoid to install
I can't believe this was released without testing. BEWARE - THIS WILL LOCK YOU OUT OF YOUR SITE AND REMOVE THE LOGIN BY DEFAULT.
The only way to gain access to your dashboard is to disable (rename) the plugin via ftp.
EXTREMELY disappointing and no support from the developer.
Bugs, bugs and lockouts. BUT, if you go PRO now!, we'll fix it for ya for free. Talk about hostage taking. After updating to the new iThemes Security from my beloved WP Better Security, I was locked out and frantically had to get on the bus with everyone else in trying to get into the dashboard. Now I get to go remove this from all my clients' sites. Yikes!
WP Better security is my favourite WP plugin till iThemes brought it. Do not update your wp-security to ithemes security, you will loose all the great features especially, hiding your admin login. Keep your current WP-security version.
You must log in to submit a review. You can also log in or register using the form near the top of this page.