WordPress.org

Plugin Reviews

iThemes Security (formerly Better WP Security)

Protect your WordPress site by hiding vital areas of your site, protecting access to important files, preventing brute-force login attempts, detecting

123336

3359 reviews
Average Rating
4.7 out of 5 stars
great plugin
By , for WP 4.3

great plugin with many important options

I have solved a lot of security problems with this plugin
By , for WP 4.3

When I found and install the plugin, I solve problems with all my customers web sites.

I have solved a lot of security problems with this plugin
By , for WP 4.3

When I found and install the plugin, I solve problems with all my customers web sites.

many useful functions - and it works
By ,

and that´s all I can say about the iThemes Security WordPress plugin.

A must have plugin!
By ,

Thank you iThemes & Co. for this amazing work!
Essential for every WP site ;)

good
By , for WP 4.3

tks , it's best,

works fine 5/5
By , for WP 4.3

works fine 5/5

Does more than expected!
By , for WP 4.3

Really great plugin. Pointed out areas of risk I did not think of. Overprotective in some ways, but the great thing is: I can decide how to manage it. Example: I don't want to force my users to change their username to be different than their public name. The risk is that hackers will try to get in by making up URLs with the author name. And they sure do! I found this out because I turned on 404 logging and lockouts. So I've confirmed that they are trying to do this...but I'm also blocking them from doing so without inconveniencing my users. Pretty slick. Thanks for a great plugin.

Solid piece of software
By , for WP 4.2.4

It does indeed block quite a number of common attacks. The scant few minutes it takes to install and configure is a testament to it's thoughtful UI. There's a lot of complexity under the hood but the initial dashboard priority system keeps it manageable. When you do dig farther into the settings, there's a paragraph or so of explanatory text alongside each control. Good stuff!

New upgrade is junk. Server 500 errors
By ,

New upgrade is junk. Creates a completely different version of .htaccess file, and as soon as you try to add IP to one of the lists it'll crash with Server 500, both admin AND your site being unavailable. The only solution is to either delete or overwrite .htaccess with backup.

You must log in to submit a review. You can also log in or register using the form near the top of this page.