• 

  Holly Jahangiri, April 23, 2012 @ 2:09 am Reply

  Funny thing – I tried this and another security plug-in blocked it.

  Seriously, this is a good plug-in, from what I can tell. I run a different combination of things, but this does all the right things, from the looks of it. Good post, Abhi.

  I mean – useful, helpful, educational, and proactively preventive post!
  • 

    Abhi, April 23, 2012 @ 8:04 pm Reply

    oh really? You know, when I mentioned you about the hacked site, I had a discussion with DiTesco and he suggested me to remove all the plugins (Firewall, another security plugs) and install that one. And really, it’s GREAT.

    WoW! I’m glad you appreciated me that way. Honored.
    • 

      DiTesco, April 25, 2012 @ 7:35 pm Reply

      Nice Abhi. Glad you found a “better” way to improve your sites security. It won’t guarantee 100% defense, but making it difficult for someone to do something bad on your site is already a great step. Some will insist, and others will just move on to the next one, to find vulnerabilities.
      • 

        Abhi, April 25, 2012 @ 7:42 pm Reply

        Hello DiTesco,

        Good to see you here. Yeah, I can understand, it can’t assure 100% that the site will not be hacked. But yes, it will surely make it difficult for them.

        Thank you for your visit and comments.
    • 

      Olawale Daniel, April 25, 2012 @ 7:54 pm Reply

      It is certain that this plugin can only help the situation a bit but no one should consider it done because every day, there’s always new techniques and tricks out there. You rock @Abhi for sharing this.
      • 

        Abhi, April 25, 2012 @ 8:05 pm Reply

        Hey Olawale,

        Yep, site is not secured 100% but it’s secure very much, I think. Better than before, at least.

        Thank you for the awesome comment, my friend.
    • 

      Sudeep Acharya, March 9, 2013 @ 10:31 pm Reply

      Hi Abhi,

      After installing this plugin, my website goes offline and shows 500 internal server error.
      Though I like this plugin but due to this not able to use it…please advice.
      • 

        Abhi, March 10, 2013 @ 6:45 pm Reply

        Hello Sudeep,

        Have you updated to wordpress’s latest version. It looks like the plugin is the properly working. I don’t understand what they are doing. For now, keep that plugin deactivated. Until they give an update.
        • 

          Sudeep Acharya, March 11, 2013 @ 4:13 pm

          Yes Abhi,

          I have updated to the latest version.
          Do we have an alternative to this plugin?
• 

  Luv, April 23, 2012 @ 7:14 pm Reply

  Abhi, unfortunately your that friend is me only. LOL
  You already told me to install this plugin and at last we fixed this mess up that day.
  And yes I would like to thank you for publishing this informative post
  And yes one more plugin is there i.e. “Disable Directory Listing” as it prevents virtual directory listing services from listing the contents of directories or show a page in place of a directory’s listing.
  • 

    Abhi, April 23, 2012 @ 8:07 pm Reply

    Hey Luv,

    If you’ll crawl through the options in this plugin, you’ll find that option about which you are talking. Have a look and let me know if I’m wrong. I guess, I did see something like that.

    Thank you for appreciation.
• 

  Ifham khan, April 24, 2012 @ 9:19 pm Reply

  Done all the settings as you mentioned abhi. Hope my blog will be secure from now
  • 

    Abhi, April 24, 2012 @ 9:36 pm Reply

    Hey Ifham,

    If you are not a non techie then I would suggest you to go through the details of the rest which I left. Better prevention better security.
• 

  Rizwan Sultan, April 24, 2012 @ 11:26 pm Reply

  Hey Abhi

  Agree with your limiting login attempt and IP blocking is a bit great idea I also openly challenged for hacking my wallpaper site on testing but indeed no one success in that but really it’s very hard to secure your system with attackers.
  • 

    Abhi, April 25, 2012 @ 7:11 pm Reply

    Hey Rizwan,

    Yep, both are good in their own. You know, as I said in my article, I get 2-3 site lockout notification everyday. And if there is site lockout with the same IP. I ban that user.

    Yes, it’s HARD. But you know, there are so many kids, little unskilled hackers who think they know hacking very well. But actually, whatever they do can be done by anyone. We all know there are tons of articles on Google to hack which is ABSOLUTELY WRONG, I think.
• 

  Sajith@buy domain name, April 24, 2012 @ 11:36 pm Reply

  Wow, this seems to be a great security plugin for wordpress. I’ll surely add it on my blog. Great share
  • 

    Abhi, April 25, 2012 @ 7:13 pm Reply

    Thank you, Sajith! Good to see you around my blog.

    Did you see my strategy where I did share my strategy to get lots of comments on your guest post?

    See in the sidebar, image at the top.
• 

  Mohammad Afnan, April 25, 2012 @ 11:40 pm Reply

  i have downloaded it.now i feel that my blog is safe..and i have removed my old security plug in.
  • 

    Abhi, April 26, 2012 @ 11:03 am Reply

    Hey Mohd. Afnan,

    It’s good that you have installed this. But it doesn’t guarantee that your blog is completely secured from hackers. But that’s confirm that after installing this plugin our blog is more secure, better than before, at least.
• 

  Mohammad Afnan, April 26, 2012 @ 11:19 pm Reply

  yeah you are right.you don’t belive that i feel more secure now from fast.
• 

  Chitra, April 28, 2012 @ 11:19 am Reply

  Hi, thanks for recommending this plugin. It is just excellent. Every blogger should use this.
  • 

    Abhi, April 28, 2012 @ 12:03 pm Reply

    Your welcome, Chitra! Yes, this plugin is nice. Because it does most of our work and easily.
• Blog Engage Guest Blogging Contest Winners - I WON!, May 1, 2012 @ 4:32 pm Reply

  […] Secure your WordPress site from HACKERS NOW! submit_url = 'http://oddblogger.com//blog-engage-guest-blogging-contest-winners/';var […]
• 

  Varinder Pal Singh, May 3, 2012 @ 11:32 am Reply

  Thank You! for sharing this amazing plugin, it helped me a lot.
  • 

    Abhi, May 7, 2012 @ 4:34 pm Reply

    Your welcome, Varinder!
• So you got hacked.. now what?, May 5, 2012 @ 6:58 pm Reply

  […] recommend this!  It will not only tell you vulnerabilities in your site, but how to fix them.  Here is some great information that will walk you through the […]
• 

  Jeet Dholakia, May 7, 2012 @ 11:28 am Reply

  Hello Abhi,
  Nice post regarding WordPress security. I am currently using two plugins on my site for the wordpress security 1) Secure WordPress 2) BulletProof Security and i am very happy with its out come. It’s also very important to backup your wordpress data on regular basis and for that i am using Xcloner want to know which one you are using for backup purpose?

  Thank you and have a good day.
  • 

    Abhi, May 7, 2012 @ 4:35 pm Reply

    Hello Jeet,

    You know this plugin do most of my work in single. It automatically make a back up of my database on regular bases. Secure me from most of the vulnerabilities.
• 

  Zeeshan, May 7, 2012 @ 4:24 pm Reply

  I don’t know how to describe my feelings because at this time i am so happy and sad too. I am happy because i have just read an awesome article on WordPress security but after reading your article i see a huge security collapse in your blog and that is your Admin Username i.e “Abhi” is displaying in all your articles. If any hacker see this than he can try to unlock your password and get into your WordPress admin page.
  • 

    Abhi, May 7, 2012 @ 4:38 pm Reply

    Hey Zeeshan,

    I am glad you liked my article but “Abhi” is not my username. And even if any hacker will attempt to hack my site then after his 2-3 tries, his IP will be blocked for my site temporarily. And if that IP is again blocked temporarily few times then it will be permanently blocked.
• 

  Avinash King Avinash, May 7, 2012 @ 4:24 pm Reply

  Hi, Abhi
  It is good to read all your content to protect our WordPress blog But hackers are very smart even they can hack. I am telling this because in my team a person is certified hacker and network administrator and i told about this article then he laughed and tell all these.

  by the way, It is Awesome
  • 

    Abhi, May 7, 2012 @ 4:42 pm Reply

    Hello Avinash,

    Yes, I agree with you. And this security is NOT from certified hackers. It is from those unskilled hackers who try to MESS UP other’s sites by Google tutorials and whatever.

    A hacker is not who can hack a site or change it’s homepage.

    A hacker is one who can decode a password without the help of any software OR make a software himself to do decode an encoded password.

    But I guess, our site is more secured from those who just want to play with others.
• 

  Chris Wiegman, May 12, 2012 @ 2:18 am Reply

  Thanks for the writeup on my Better WP Security plugins.

  To address some comments, no, this plugin can’t guarantee you won’t get hacked. Nothing can promise you that. The bulk of attacks on WordPress these days aren’t targeted and are simply the result of a bot stumbling across an un-patched vulnerability, weak password, etc. This plugin is designed to take care of those types of issues. If you’re specifically targeted by someone who knows what they’re doing then all bets are off regardless of the countermeasures you have taken.
  • 

    Abhi, May 12, 2012 @ 12:01 pm Reply

    Hello Chris,

    Glad to see you here. And thank you for such a great plugin.
• 

  Sherryl Perry, May 21, 2012 @ 3:37 am Reply

  I found this post very helpful Abhi. I had taken the option to rename my table prefixes before I read this. So far, I don’t see any issues with it on my 2+ year old blog. Hopefully, I dodged a bullet on this one.

  I’m thankful that I read your comments and DiTesco’s recommendation to delete other security plugins. I removed WordPress Firewall. Do you (or anyone else) recommend removing Login Lockdown too?
  • 

    Abhi, May 21, 2012 @ 7:25 pm Reply

    Hello Sherryl,

    I am glad you found this post helpful… I think, YES, you can remove login lockdown too. Because this plugin has that feature.

    Let me know if you need any help. Or would you mind giving me a hand? Have a look to the post linked below.
    • 

      Sherryl Perry, May 21, 2012 @ 8:37 pm Reply

      Hi Abhi,
      After I commented, I poked around the plugin little and saw that feature was included. Thanks for the reply. I’ll check out your entry. I’m a member of Blog Engage. Maybe it’s time I thought about entering one of their contests too.
      • 

        Abhi, May 21, 2012 @ 8:41 pm Reply

        Your welcome. ANd if you are a member, too, then it’s good for me, I can expect your vote (Of course, only if you LIKE it).

        And then you might have heard about the last contest results. You have gotta look at the following link if you didn’t. Thanks for visiting my blog. I hope to see you around.
• 

  Trung Nguyen, June 1, 2012 @ 2:23 pm Reply

  I’ve just installed some plugins you listed here to protect my blog, thanks for share
  • 

    Abhi, June 4, 2012 @ 9:52 pm Reply

    Your welcome, Trung! Please share this plug in with your friends. So, that they can secure their blogs.
• 

  Raaj Trambadia, June 4, 2012 @ 4:24 pm Reply

  Used none till now, but will surely be using this one. Actually, I’m just installing it
  • 

    Abhi, June 4, 2012 @ 9:54 pm Reply

    Hello Raaj,

    Nice to see you here, buddy! Let me know if you are confused in any of the fix in that plugin.

    Can you please do me a favor? I’d be grateful if you can visit my contest entry and hit all the buttons and join the conversation their.

    Here’s the link: http://www.blogengage.com/blogger/10-reasons-why-i-will-not-accept-your-guest-post/

    Hope to see you their.
    • 

      Raaj Trambadia, June 5, 2012 @ 2:57 am Reply

      Hey Abhi. Have pressed as many buttons as I could there All the best brother! Cheers
      • 

        Abhi, June 5, 2012 @ 11:36 am Reply

        Thanks a lot, Dude!
• 

  Justin Germino, June 7, 2012 @ 8:27 pm Reply

  Personally I use WP-Security Scan and harden the rest manually, but this plugin I have run into on a few clients blogs and is very good, unfortunately I had a client click to fix and completely lock up their site so they couldn’t hit anything, no images loading, no wordpress admin.. had to fix it all from Cpanel manually and was a pain.
  • 

    Abhi, June 7, 2012 @ 8:32 pm Reply

    Well, WE have to take care of this. We can mess up our site if me start playing we something we don’t know. For non techies I have mentioned which fixes to apply and which to not. Even after these simple fixes I got some questions. But they were not a big deal.
• 

  saad naeem, June 11, 2012 @ 6:45 am Reply

  hey abhi great post , i am using this plugin which limits the no. of login to 3. great plugin , you should check it out.
  • 

    Abhi, July 16, 2012 @ 9:48 am Reply

    Hello Saad,

    Thank you for the recommendation. But if you look into this plugin, this plugin has a built-in option to limit login.

    Thank you for commenting.
• Better WP Security: You Should Have it Now » Personal Blog of Justin Germino, June 12, 2012 @ 8:30 pm Reply

  […] If you haven’t started looking at WP Better Security for WordPress you should check it out and I highly recommend you read Abhi’s article here: http://oddblogger.com//best-wordpress-security-plugin/ […]
• 

  braddock, June 24, 2012 @ 11:21 pm Reply

  Thanks for the details on the settings for Better WP Security. I haven’t had any problems using the settings you recommend. This is a really great plugin.
  • 

    Abhi, July 16, 2012 @ 9:50 am Reply

    Hello Braddock,

    Thank you for stopping by!

    Glad you found it useful. If you can return the favor, then please visit my contest entry and show some support by hitting all share buttons and commenting. It’d be great help.

    Thanks, anyway!
• 3 WordPress SEO plugins you may want to consider!, June 30, 2012 @ 6:32 pm Reply

  […] SEO my blog and its posts. Do you use any other plugin? I would love to hear about that. Also check Best WordPress SECURITY Plugin to save your blog from […]
• 

  shivam, July 12, 2012 @ 4:57 pm Reply

  Thanks for the plugin…………..earlier i was using BPS security plugin…..but now m using this one, hope it woks fine……….:)
  • 

    Abhi, July 16, 2012 @ 10:01 am Reply

    Hey Shivam,

    This plugin doesn’t guarantee of 100% safety but it works much better and it’s definitely secure our blog from many vulnerabilities.

    Thank you for comments. Please have a look to my contest entry linked below. You support would be appreciable.
• 

  Sai Kumar, July 15, 2012 @ 11:11 pm Reply

  Hi abhi, Great article bro. Thanks for Recommending and well explained this Better WP Security plugin bro.
  • 

    Abhi, July 16, 2012 @ 10:02 am Reply

    Thank you, Sai!

    I appreciate your comments. If you can, then please have a look to my contest entry and show some support by hitting all share buttons and commenting. It would be really great.
• 

  Ariel,, July 31, 2012 @ 12:56 pm Reply

  Hello Abhi, then, installing this plugin will be all about security or some other thing to add?
  • 

    Abhi, July 31, 2012 @ 6:33 pm Reply

    I don’t think you have to install any other.
• Better WP Security | James Perry, August 2, 2012 @ 8:13 pm Reply

  […] post at http://oddblogger.com//best-wordpress-security-plugin/ reviewed Better WP Security and it seemed like a good one to try so I went ahead and installed […]
• 

  Aghper, August 4, 2012 @ 12:37 am Reply

  i am getting error on my site when using this plugin and got a message saying locked out

  A host, 70.25.46.222(you can check the host at http://ip-adress.com/ip_tracer/70.25.46.222) has been locked out of the WordPress site at http://mysite until Friday, August 3rd, 2012 at 5:14:58 pm UTC due to too many attempts to open a file that does not exist. You may login to the site to manually release the lock if necessary.

  does this gives that error message?
  • 

    Abhi, August 4, 2012 @ 10:15 pm Reply

    This is not error. It’s just reporting. If you get lock out notification from the same IP address again and again then it means someone is trying to hack your site from that IP address. Then you can go to this plugin and add that IP address in BAN hosts to ban that user from your site.

    Let me know if you get that. There’s nothing to worry.
    • 

      Mike, March 10, 2013 @ 7:11 am Reply

      Isn’t there a plugin that will automatically ban these kinds of attacks?
• 

  joginder chauhan, August 4, 2012 @ 4:21 am Reply

  you writing skills is very good . and i m a fresher blogger and a learn lot more thing from your website. thanks for this great information.
• 

  Ariel,, August 7, 2012 @ 1:20 am Reply

  Is It true that plug ins turn sites slower?

  And what do you think of only using a plugin that block login attempts after a number of 3 or so and all the other tricks like back ups etc making manually? would it be the same?
  • 

    Abhi, August 7, 2012 @ 8:53 pm Reply

    Hey Ariel,

    Yes, few plugins may turn the sites slower, especially those 404 plugins. But not necessarily all plugins, actually most of the plugins doesn’t.

    Yes, you can use that plugin, to lock users out after few attempts but it will secure you only from those brute force attacks.

    There are many other things we need to take care of when it comes to security like .htaccess files (especially this one, I see a lot of cases when hackers play with this file if they are left open).

    Let me know if you need any more help.
• 

  Ariel,, August 9, 2012 @ 12:26 pm Reply

  Abhi, what way use this plug in to protect .htaccess files ?

  And the back ups are sent to email, do you say in the email is the site files? if so, I think to have read somewhere that for example in hostgator is possible to make back ups, is it correct? then which one would be better?
  • 

    Abhi, August 9, 2012 @ 4:38 pm Reply

    To protect .htaccess files, maybe, the plugin fix the values for the files. I am not so sure, though.

    Yes, the back ups are sent to your email address and if you wish, instead of getting a regular back up email, you can rather get the back up file uploaded to your WordPress directory which can be accessed later via FTP.

    Yes, hosting services provide this back up service, and it’s good. But they charge money for this.

    Contact me through my contact form if you still have any doubt.
• 

  Nizam, August 29, 2012 @ 7:44 pm Reply

  Wow! This is really useful guide on best WP security plugins. I didn’t know about Better WP security plugin, it seems to be a really good plugin. Well, I’m using Login Lockdown to limit login attempts, it is a useful plugin. Thanks Abhi for this excellent post
  • 

    Abhi, September 1, 2012 @ 10:09 am Reply

    Hello Nizam,

    Login lockdown option is there in this plugin. And there are some more freaking awesome option with in the plugin. You can try it.

    Thanks for comments. I hope youshared.
• 

  Enstine Muki, August 31, 2012 @ 11:43 pm Reply

  This looks a good security plugin bro. I’ll get and try it shortly. I should update if I have issues
  • 

    Abhi, September 1, 2012 @ 9:40 am Reply

    Hello Enstine,

    I am glad you liked it. Don’t forget to share this with your friends. Isn’t it a very useful plugin?
• 

  Okachi Azubuike, September 14, 2012 @ 8:04 pm Reply

  Hi Abhi,

  Thank you for this great tips about WP security but my website www makemoneyonlinebuz.com is already hacked.

  How do I restore it?
• 

  Abhi, September 14, 2012 @ 8:49 pm Reply

  Hello Okachi,

  Are you able to access your dashboard?
• 

  Fred Owusu, September 18, 2012 @ 10:03 pm Reply

  Thank you for sharing this post Abhi. Needed the tips in enabling the plugin. It seen like I was trying to learn a new language but you put your How To. setting this up made easy. thanks
  • 

    Abhi, September 30, 2012 @ 10:25 pm Reply

    Your welcome, Fred.

    I am glad I can be helpful.
• 

  Arjun, September 30, 2012 @ 10:05 pm Reply

  Awesome post! I diodn’t concern more about my blog’s security. Now installing this plugin.
  • 

    Abhi, September 30, 2012 @ 10:25 pm Reply

    You should, Arjun!

    Thanks for stopping by.
• 

  Jane, September 30, 2012 @ 10:05 pm Reply

  Sounds like something that is worth a try. Especially I love item #7 where I can disable dashboard login when I go to sleep; sweet
  • 

    Abhi, September 30, 2012 @ 10:24 pm Reply

    Right, Jane! It’s worth a try. I was getting so many hacking attempts emails. Now they are all stop, because hackers know my site is not THAT MUCH vulnerable so they skip it.

    And about that disabling dashboard, sometimes, when I am up till late, my blog kick me out of my dashboard after the time I have set up. LOL!

    Thanks for adding your comments, Jane.

    Take care while installing the plugin, I know you will but still.
• 

  Ian Eberle, October 1, 2012 @ 2:04 am Reply

  I think most people don’t think twice about their blog’s security until it’s too late. Thanks for sharing this plugin with us, I will be installing it soon.
  • 

    Abhi, October 18, 2012 @ 10:07 am Reply

    Right, Ian!

    People think about security when it’s too late or when they have met some security issues already.

    I am glad I did it before someone hacked my account.
• 

  Hassaan Khan, October 18, 2012 @ 3:11 am Reply

  HI Abhi, I was installing this plugin the other day, then i stopped and did not activate it when it asked which you mentioned in header tweaks. Abhi explain please, why you kept first two points in header tweaks?

  Waiting…
  • 

    Abhi, October 18, 2012 @ 10:06 am Reply

    Hey Hassan,

    If you did read carefully, I mentioned in point #2 – “Check all three options there.”

    You have to check all three options in header tweaks. They are not necessary for our blog and they also makes our blog vulnerable in front of other.

    Let me know if you need any help regarding this.
    • 

      Hassaan Khan, October 18, 2012 @ 6:10 pm Reply

      Thanks for replying. All three should be checked or unchecked? Plz confirm…
      • 

        Abhi, October 18, 2012 @ 8:26 pm Reply

        How many times I will have to confirm for the same thing ? I already did two times.

        YES, We have to check all three.

        Don’t worry. Just make a back up before starting the process. Okay?

        If you still find any problem, contact me through the contact form. I will be happy to help.

        After you are done with this plugin, please take a minute to visit the link below and write some comments. That’d be great.

        Thank you!
• 

  Hammad Baig, October 20, 2012 @ 2:42 pm Reply

  Thank You! for sharing this amazing plugin, it helped me a lot.
• 

  Balaz Sabo Sipos, November 8, 2012 @ 12:37 am Reply

  HeyAbhi,

  Really Nice Plugin, i was searching for something that gives some nice Security Options, it seams that this one is giving all that we Need.

  Do you Know maybe some other Plugins, or This one is Really the Best?

  Tnx for Info, and Keep up the Great Work…
• 

  Vivek, November 23, 2012 @ 2:43 pm Reply

  Great review. This plugin really gives lots of options to configure your security. And Personally I am using it to at-least make my blog secure.
• 

  sahil, January 3, 2013 @ 10:47 am Reply

  thnx abhi i m using this plugin 1st time before this i use bullet proof but i think this one better .
  but thnx 2 u you help fot setting of this plugin..
• 

  Jason Mathes, February 6, 2013 @ 9:10 pm Reply

  I’m afraid it will trash my site. I tested this on my backup wordpress and it did some very bad things to the site.

  For now I’m using Pie Register – which at least ads re-captcha for users wishing to register and then I have to approve them.

  Its a start at least (and thanks for showing it to me too!)
• 

  Kharim Tomlinson, February 6, 2013 @ 11:24 pm Reply

  Great to know that we have security plugins to protect our blogs from hackers.

  Will install this plugin right away.

  Thanks for the awesome share!
  • 

    Abhi, February 7, 2013 @ 11:27 am Reply

    The pleasure is all mine, Kharim!

    I did sum up few useful plugins to use in 2013 in one of my previous posts. You might wanna check it out, too.

    Thanks for stopping by, my friend.
• 

  Sudeep Acharya, March 12, 2013 @ 4:31 pm Reply

  
  Sudeep Acharya:
  
  Yes Abhi,
  I have updated to the latest version.Do we have an alternative to this plugin?

  I am still looking for a solution from you.
  Thanks.
  • 

    Abhi, March 12, 2013 @ 8:10 pm Reply

    Hello Sudeep,

    I am trying to find a best plugin like this one for now. But please install login lockdown and wordpress firewall 2 for now for security. I will update the information on Fanpage as soon I get a good working plugin about security.
• 

  Sudeep Acharya, March 13, 2013 @ 5:22 pm Reply

  Hi Abhi,
  At wp repo, I found alternatives to your recommendations and I felt that I should share them.
  I installed simple login lockdown which is very much similar to you stated but the plugin is an updated one.
  Also I installed OSE Firewall which is again an updated and do lots of work .You can even show a security seal in your website .
  • 

    Abhi, March 13, 2013 @ 7:05 pm Reply

    That’s great. Thanks for sharing it.
• 

  Sudeep Acharya, March 14, 2013 @ 4:46 pm Reply

  Abhi- I would also requst you to review OSE Firewall plugin, I know it’s not so deadly like we are used to but surely a good alternative till the time we do not get a best one.
• 

  Sudeep Acharya, March 16, 2013 @ 8:20 pm Reply

  Hey Abhi-

  How are you?

  Is there a way to rename the login, register and admin urls without any plugin?
  I have already googled it but can you please tell me a fool-proof way.
• 

  Tisa Yonts, April 23, 2013 @ 9:26 pm Reply

  Can you tell me what to do about this message I got when using this plugin?
  Your database contains 65 404 errors
  • 

    Abhi, April 23, 2013 @ 10:10 pm Reply

    Hello Tisa,

    I have never seen any error like this. Please try Google or plugin site for solution. I will surely get back if I find any solution.
• 

  Jimmy Leroo, September 13, 2013 @ 4:03 am Reply

  Wow finally! a security plugin worth looking into and since the wordpress attack this can be the perfect solution to fight hackers. Thanks for the awesome post.
• 

  vickie, February 1, 2014 @ 11:30 pm Reply

  Abhi -I’m not a happy camper with this plug in. I followed all the instructions and got to #10. It took me to a page where I’m supposed to click some boxes and add IP addresses in the boxes. It then recommended this http://hackrepair.com/how-to-block-bots-from-seeing-your-website-bad-bots-and-drive-by-hacks-explained as a good site where you could get the IP addresses. So I copied those and put a few of them into the boxes to test. I got a 500 Error code and now cannot open or access my site from anywhere. It’s a nightmare!

  I DID do a backup.
  Do I make a dummy site and import the backup into that through PhP my Admin on my Cpanel? Or do I need to use the FTP client to access it and remove the entire Better WP plug in and then start over?

  I have checked and my database is OK – but I can’t get into the site.
  Help?!
  Thanks for a great article that I WISH I had read before trying to do this plug in on my own!!!!
  Vickie
  • 

    Abhishek Balani, February 3, 2014 @ 5:48 am Reply

    I would suggest you to first login to your FTP and rename your .htaccess file to something else and create a blank file and name it .htaccess. See if you can login after that or revert back.
• 

  vickie, February 3, 2014 @ 7:36 pm Reply

  Hi Abhi – thanks. But it didn’t work. Turns out I’m not the only one – http://wordpress.org/support/view/plugin-reviews/better-wp-security?filter=1
  Do you know – if I go in through FTP can I just delete this plug in? Or if I’m getting a 500 error code, is it holding my .htaccess file hostage?

  What a mess. As the above link states – if you aren’t comfortable doing a lot of coding in the back end of your WP site, don’t use this plug in. It’s not as intuitive as some users make it sound.
  • 

    Abhishek Balani, February 4, 2014 @ 6:12 am Reply

    Hey Vickie,
    You must have noticed in #16. It changed the file permissions of wp-config and .htaccess. It does that to enhance security. Also it modifies our .htaccess file.
    That is why I asked you to try with .htaccess file.

    You should NEVER delete the plugin directly from cPanel. Doing that doesn’t completely uninstalls the plugin which may make problems later in your DB. I have experienced that.
• 

  vickie, February 3, 2014 @ 8:31 pm Reply

  Abhi and other readers – here’s what I did to fix it (Yeah!)
  1. I’m on a Cpanel, so I went in to plug ins in the root file and deleted Better WP Security.
  2. I found the .htaccess file and changed permissions from 644 to 677, then edited out everything from #Better WP Security all the way down to #Begin WP
  3. Saved file
  4. Changed permissions back to 644
  5. Refreshed page and voila! My site is back up.

  Thanks for the guidance and info on this program. I think there are different levels of “newbie” and some of us just shouldn’t be messing around in the section of Better WP that has you listing blocked sites and agents…
  • 

    Abhishek Balani, February 4, 2014 @ 6:15 am Reply

    I am glad you were able to solve the problem.
    You are right, this plugin is a little complicated if you don’t know this stuff. But there are lots of tutorial on the plugin.

    Thanks for putting the solution of your problem.

    Keep visiting OddBlogger.

This site uses Akismet to reduce spam. Learn how your comment data is processed.