Tips and Tricks HQ Support

Support site for Tips and Tricks HQ premium products

eStore – Compatibility with Better WP Security plugin

by

Tips and Tricks HQ Support Portal Forums WP eStore Forum eStore – Compatibility with Better WP Security plugin

Tagged: , , , ,

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • August 12, 2012 at 4:01 pm #7149
    lightfoot
    Member

    I would like to know whether any of the following functions of the Better WP Security plugin will affect the function of the eStore plugin:

    • Preventing eStore from rewriting the .htaccess and wp-config files.

    • Disallowing URL requests longer than 255 characters.

    • Renaming the /wp-content directory of the site.

    Please feel free to also comment on whether these security measures are really worth it.

    Thank you very much.

    August 12, 2012 at 4:35 pm #48339
    wzp
    Moderator

    * Preventing eStore from rewriting the .htaccess and wp-config files.

    eStore does not attempt this function. However, you might be required to manually adjust these files, in order to achieve functionality; that is otherwise prevented by your hosting provider’s default settings.

    * Disallowing URL requests longer than 255 characters.

    Encrypted eStore download URL have the unmeasured, but unlikely, possibility of exceeding this limit. If it does happen, use of URL shortening will not resolve the issue; because the shortening service will always present the unshortened URL to the site. In other words, we’ll cross that bridge if you come to it.

    * Renaming the /wp-content directory of the site.

    eStore does no such thing.

    Considering that the plugin is FREE, here is my list of features for why it may be worth installing:

    * Ban troublesome bots and other hosts

    * Ban troublesome user agents

    * Prevent brute force attacks by banning hosts and users with too many invalid login attempts

    * Enforce strong passwords for all accounts of a configurable minimum role

    * Force SSL for admin pages (on supporting servers)

    * Force SSL for any page or post (on supporting servers)

    * Turn off file editing from within WordPress admin area

    If I were to perform a major renovation of my site, I might consider this plugin as a replacement for 2 or 3 that I am currently using.

    Note: You “may or may not” encounter a situation similar to this…

    https://support.tipsandtricks-hq.com/forums/topic/unable-to-access-wp-estore-in-wp-control-panel

  • Author
    Posts
Viewing 2 posts - 1 through 2 (of 2 total)
  • You must be logged in to reply to this topic.