Very helpful in finding otherwise hidden spamcode. Especially the supervision of core files helps a lot.
I downloaded Wordfence along with the new WordPress 3.9. Of all the plug-ins, it's the easiest for me to understand--and use. Everything else on my site, [ link redacted, please do not post links in reviews ] I've managed (more or less, usually less) by trial and error. I get it wrong as often as I get it right.
My site includes a good deal of my original fiction. I don't care about owning anything else. My stories, though, are mine. Writing them is all I do. The pictures I make to accompany them are just a way to relax and free to anyone who wants them. You can steal my shoes. My toothbrush. I don't care. But if someone claims my fiction, I'd like to know about it. Wordfense will help me protect the only thing I've got.
I have had recurring issues with this plugin. It is a tremendous memory hog and its design often causes it to use up all the memory in a server (which then triggers the process killer to target and kill the largest running process--Mysql!)
I have attempted to get help from the devs at various stages of its development to no avail. The most recent version--5.0.4--has clearly changed in a way that now causes EVERY scan attempt to kill Mysql and take down my site (along with the running scan). This is on a server running one site and using 1 gig of real memory and 500 megs of virtual swap memory!
If you monitor your server during a scan you can clearly see how it spawns more and more database connections (as it attempts to keep running past the max_execution_time). But there is no way to release all the paused sessions! If you have too much data and files you WILL eventually experience this.
I can only assume they are making money off premium accounts from small sites?
Worse, they don't offer the often to run your scans "in pieces" so that you can complete part of a scan, release database connections (and memory) and then run another part of the scan. This lack of flexibility I believe also relates to their inability to design the plugin to work properly.
Great plugin for security
I also tried other security plugins but find this is the best.
I installed this plugin because it was on the 'top plugins' list in WordPress.org daily updates, and am glad I did. I haven't yet enabled the security features, except to do a scan to satisfy my curiosity (no security issues), but I did enable the caching option.. just to the 2-3 times faster, not the 30-50 as yet. I try that later. But I am very pleased with the results that even this option gives me: It literally did (and noticeably) speed up the site!
I also like the live users feature, so I can see exactly who is on the site at any one time, and what they're doing. Interesting how much time the googlebots spend on each page!!
Overall, an excellent plugin, and I would recommend it to anyone.
Besides all that, you just need to look at the rating it's been given; 1351 users gave it all 5 stars, compared to not even 70 users (did they even use it?) who gave it less. Thanks WordFence, keep up the good work!!
With many people trying to hack my sites this plugin is a life saver.
Install this plugin!
I have been using this plugin for the last couple of years (since my sites were attacked and compromised), and I have to say that it is absolutely a "must-have" plugin for any WP administrator to have in their arsenal. I install this plugin before I install ANYTHING ELSE whenever I start a new WP website for myself or a client.
One of the best tools I've found so far. Thank you!
You must log in to submit a review. You can also log in or register using the form near the top of this page.