≡ Menu

BulletProof Security WordPress Plug-in Review

I have been using BulletProof Security WordPress Plug-in to protect my WordPress blogs from XSS & SQL Injection hacking attempts for a few weeks. BPS also blocks Base64_encode code injection.

I found it pretty easy to use since all I need to do is install BPS and activate the BPS plug-in, and enable the different security modes on the BPS plug-in settings page found within the WordPress Dashboard.

BPS modifies your WordPress .Htaccess files, and makes WordPress more secure, so hackers and bots can’t infect/hack your website, or have a lot harder time infecting and hacking your blog.

BPS also warns you of unsecure chmod file permissions for your WordPress files, and how to correct them in FileZilla FTP client. BPS helps you secure your WordPress installation by helping you hide your version of WordPress from hackers.

BPS will protects your wp-config.php, php.ini, php5.ini, wp-admin, and other WordPress Files and Folders from hackers.

BPS is also very well documented, so you can read about how to install and use BPS before installing it on WordPress.

Also, you need to change your permalink structure by going to settings > permalink, and pick Day and name then “save changes”.

I recommend you backup your WordPress’s .HTACCESS file before installing BPS since BPS modifies your root .HTACCESS file, so if something goes wrong, you can restore your default .HTACCESS file to fix it till you figure out what you did wrong.

BPS also can tell you what version of php and MySQL you are running, how much RAM you are using for WordPress, and more information about WordPress and your Web hosting package.

I recommend anyone who is using WordPress to consider installing BulletProof Security WordPress Plug-in for your blog since it could save you a lot of time since recovering from a hacked or infected blog can be very hard and time consuming to fix.

Learn more about BulletProof Security WordPress Plug-in at wordpress.org/extend/plugins/bulletproof-security/

I also recommend that you at least back up your database files for WordPress on a daily, or weekly basis whenever you add a new article to your blog since losing an article, multiple, or all articles on a blog can be very frustrating.

You should also backup your WordPress files and folders on your web server to your computer before and after you make major changes to your blog like before and after upgrading your version of WordPress to the latest versions.

You also might be interested in reading:

Plugin for locking out hackers to a WordPress Blog

WordPress Anti-Spambot registration SABRE Plugin

How to Turn off User registration for WordPress 3.0 blogs

You can also password protect your WordPress’s WP-Admin folder if your webhost supports password protected directories/folders, so unwanted intruders have to hack your password protected wp-admin folder account, and your WordPress admin account before they can access your WP admin account.

8 comments… add one
  • Ed April 12, 2011, 11:06 am

    Ed from AITpro. Very, very nice review of BPS!!! I have a problem with being concise when trying to explain things, but obviously you do not. Nice, nice, nice review! Thanks.

  • Johnson Yip April 12, 2011, 6:07 pm

    Wow, I never expected the developer/owner of a plug-in to post on here. I am so honored. Keep up the good work !

  • Susan August 11, 2011, 5:04 pm

    I wish the plugin had more notifications so that I could actually see that it was working at blocking the bad guys

  • Johnson Yip August 12, 2011, 10:45 pm

    Indeed, I wish there is a notification setting as well.

  • Mikey October 1, 2011, 7:02 am

    @ Susan & Johnson.

    Since it works at the server level it would be difficult to notify you of intrusions. It would have to either read your server log or be scripted at the PHP level. There are plugins that work similar to this at the PHP level with notifications. But sever level protection is what you should harden first. Which what this plugin does.

  • John Kirkpatrick August 2, 2012, 12:53 am

    Customer Service is atrocious. I have just been called a f**king r*tard by Bulletproof Security customer service and I have the email trail to prove it, contact me if you would like to see. Being called a f^^king pussy, f&&cking magot, dipsh*t, turd, f*cking moron, dumbest mother f**ker, pussy b*tch and complete idiot all in one customer service email trail, I feel that retard was disgusting. Also the contact number on the website doesn’t work. Try yourself. A disgrace.

  • Johnson Yip August 2, 2012, 5:59 pm

    Thanks John, for sharing your experience dealing with BullerProof Security for WordPress. It is unfortunate that your experience with BPS has been unpleasant.

  • John Kirkpatrick August 3, 2012, 6:07 am

    Yes it is a pity as you’re review for the actual plugin is spot on. I will be the first to state that it is the most comprehensive security plugin available. I have had the pro version for quite a while and this was only the second time I ever contacted them. The first time I was dealing with the founder and the support was absolutely spot on and professional. However this time, with a support advisor it was downright abusive, must have had a bad day. He even had the cheek to state that I was barred from further support for BPS Pro. Unfortunate.

Leave a Comment