Wordpress Plugin - Angsuman’s Wordpress Guard Plugin - Add A Second Layer of Security to Your WordpressBy Angsuman Chakraborty, Gaea News Network
Thursday, November 13, 2008
We are very happy to announce the much-awaited release of Angsuman’s Wordpress Guard Plugin. It is a must-have Wordpress security plugin (compatible with all versions of Wordpress and tested upto version 2.6.3) that protects the vulnerable areas of your blog from outside access with an additional layer of security.
Many popular WordPress websites were hacked and defaced by executing vulnerable codes in wp-admin, which shouldn’t be accessed by outsiders in the first place. So it is widely recommended to password protect all the php files in your wp-admin.
Adding password protection to /wp-admin/ adds a 2nd layer of protection around your blog’s admin area, login, and files. This forces an attacker or bot to attack this 2nd layer of protection instead of your actual admin files. This dramatically increases your security.
Angsuman’s Wordpress Guard Plugin Features
1. Double Security For Wordpress Administrator Panel
Angsuman’s Wordpress Guard Plugin gives you an extra layer of protection over the usual authentication inlogin page. If you try to enter the administrator panel, you will be prompted for an username and password even before you can access the wp login page or any other page in the admin panel. This protects against known as well as yet unknown vulnerabilities in administration scripts.
2. Protection over wp-admin directory
Angsuman’s Wordpress Guard Plugin provides you with a comprehensive security over php files in wp-admin directory. If any unauthorized person tries to directly access any executable (php) file, belonging to Wordpress, inside wp-admin directory, he will be prompted for a user name and password. A perpetrator has to overcome this first layer of security before he can attack the second layer of security throughauthentication.
3. Protection Against Future Vulnerabilities
Wordpress security patches have always been ipso facto. Wordpress developers work upon one particular vulnerability only after one or more blog is hacked or the vulnerability is made available in some form. Secondly fixes are not immediately available after a full-disclosure which allows hackers to exploit the window of opportunity before a fix is tested and released. Thirdly, it is almost impossible to update your blog immediately after every major and minor release. Often you will find that an upgrade will cause one or more functions of your blog to fail in inexplicable ways. Not to mention that it is pretty time consuming if you own multiple blogs. Normally veteran bloggers wait for few updates after a major release (to allow for the bugs to be fixed) before they upgrade. This makes large number ofblogs vulnerable and open to hacking. Protect plugin provides protection of your blog not only against current vulnerabilities but also future vulnerabilities.
So what are you waiting for? Isn’t a plugin of that stature, that too for free, a dream come true? Download it from here.
Tags: Angsuman's Wordpress Guard Plugin, So what, Taragana, Wordpress plugins, Wordpress security