Popis

SecuPlug is the simplest and fastest security plugin for WordPress. It disables particular XML-RPC services which you are selected,
hides login page url and redirect HTTP traffic to HTTPS.

Features :

XMLRPC

WordPress hack attempts (and spam comments) are mostly becoming on XML-RPC requests.
Secuplug helps you about manage some of your critical XML-RPC services. It disables particular XML-RPC services which you are selected.
So, it makes your site safe against XML-RPC attacks ex. Spam Comments without disabling all XML-RPC services.

XML-RPC FULL PROTECTION (Disable all xml-rpc)
Denies all remote requests. Most commonly preferred to block all remote attacks.
XML-RPC LOGIN PROTECTION
Denies remote login requests. Most commonly preferred to brute force login attempts.
XML-RPC PINGBACK PROTECTION
Denies remote pingback requests. Most commonly preferred to prevent DDoS attacks.
SELF PINGBACK PROTECTION
Denies remote self pingback requests. Most commonly preferred to prevent DDoS attacks.

SSL

You can enable SSL if you have an SSL certificate. But, firstly you must buy an SSL certificate from any SSL dealer.
Also, you can use cloudflare free SSL service. Secuplug redirects the URLs of the zones you select on your site as HTTPS/SSL by force.
Also, it enhances the security of your login page by concealing the address and by ensuring SSL of your login page.

Enable HTTPS / SSL
SSL automatically encrypts your privileged information data.
Force HTTPS Login
Redirect login page protocol HTTP to HTTPS
Forge HTTPS Admin
Redirect admin page protocol HTTP to HTTPS
Force HTTPS Front Page
Redirect front page protocol HTTP to HTTPS

Login

Change Login Error
Disable your default login errors and give the attackers less than what them needed
Change Admin ID
Not hard to forecast your Admin ID, if your admin ID is 1. Secure your site against simple sql vulnerabilities.
New Custom Login URL
You can change of your login page URL name without SSL problems.

Firewall

Filter Bad Requests
Helps to secure your site against attacks like XSS, CSRF, Code Injections.
Disable Rest API
Hides your sensitive informations from the attackers. For instance Admin user id, user list and their IDs.

For complete information, please visit our website the SecuPlug website.

Snímky obrazovky

Secuplug admin XML-RPC settings page
Secuplug admin Login settings page
Secuplug admin SSL/HTTPS settings page

Instalace

Download and unzip the plugin into your WordPress plugins directory (usually /wp-content/plugins/).
Activate the plugin through the ‚Plugins‘ menu in your WordPress Admin.
Go to the Plugin’s settings page and then it’s up to you.

Nejčastější dotazy

If you have any question, you can post a support request

Recenze

Pro tento plugin nejsou žádné recenze.

Autoři

Secuplug The Simplest and Fastest Security Plugin je otevřený software. Následující lidé přispěli k vývoji tohoto pluginu.

Uğur Biçer

Přeložte “Secuplug The Simplest and Fastest Security Plugin” do svého jazyka.

Zajímá vás vývoj?

Prohledejte kód, podívejte se do SVN repozitáře, nebo se přihlaste k odběru protokolu vývoje pomocí RSS.

Přehled změn

1.3.5

Added: New firewall settings
Updated: Disable Rest API feature will disable only users service and main service any more. (Plugin issues are solved)

1.3.4.1

incomplete and forgotten cookie security code that lead to problem has disabled

1.3.4

Added new firewall features

1.3.3

Fixed errors in js files

1.3.2

Fixed https and login page protect issues on admin-ajax.php

1.3.1

Fixed an exceptional circumstance in the „hide admin login url“ link.
Added no valid SSL certificate and get an SSL warning in the settings page
Improved user experience for admin settings form

1.3

Improved SSL / HTTPS implementation
Added settings notification
Removed useless Run the scanner menu for now
Visual enhancements

1.2.11

fixed access denied issue when changing schema https to http on admin page

1.2.10

testing for version 1.2.11

1.2.9

Fixed auto loading of fix ssl js file without enable it
Fixed SSL URL replacement and redirection
Added ssl enable and forge ssl options
Added self pingback disable feature
Visual enhancements

1.2.8

Fixed some HTTPS issues in wp-admin and wp-login

1.2.7

fixed infinity redirection

1.2.6

fixed admin auth-fallback login screen issue
fixed some typos
some minor changes

1.2.4

fixed https redirect

1.2.3

fixed https issue

1.2.1

Fixed some issues

1.2.0

Added composer autoload
Fixed some typos
added new functions to wp_common trait