One thought on “WordPress Security Plugin Introduces Security Vulnerability to Websites While Its Protection Against Claimed Threat Is Easily Bypassed

  1. I absolutely agree that security plugins often do more harm than good – I can’t remember the last time I saw one actually prevent a real problem but I can easily remember many occasions when they have caused problems. This is depressing.

    This particular plugin seems to have been fixed, which is great. I doubt that would have happened without you. The reason I installed it though was to reduce server load and it has been successful in that. At one stage I logged attempts from 300,000 different IP addresses in a month so it wasn’t trivial – more a DDoS than a brute force attack. So I’m leaving it enabled until I find an alternative. Just sayin’.

    Keep up the good work and thank you.

Leave a Reply

Your email address will not be published. Required fields are marked *