WordPress Plugin Firewall permette di controllare le richieste web per individuare e fermare gli attacchi più comuni. Questo genere di moduli solitamente dovrebbero esser installati nel server web, ma non sempre è così, anche perchè difficili da configurare o perchè non siamo admin del server stesso.
Le sue caratteristiche includono :
- Detect, intecept, and log suspicious-looking parameters — and prevent them compromising WordPress.
- Also protect most WordPress plugins from the same attacks.
- Optionally configure as the first plugin to load for maximum security.
- Respond with an innocuous-looking 404, or a home page redirect.
- Optionally send an email to you with a useful dump of information upon blocking a potential attack.
- Turn on or off directory traversal attack detection.
- Turn on or off SQL injection attack detection.
- Turn on or off WordPress-specific SQL injection attack detection.
- Turn on or off blocking executable file uploads.
- Turn on or off remote arbitrary code injection detection.
- Add whitelisted IPs.
- Add additional whitelisted pages and/or fields within such pages to allow above to get through when desirable.