BPS doesn't work with GoDaddy WordPress hosting

Ok great! So what this means is that everything is actually working and I just need to do some cosmetic stuff and make any wp-admin .htaccess file alerts dismissable so they are not displayed constantly.

This has been added to the scheduled tasks list in BPS .50.6 and will be included in BPS .50.6, which will be released in 3-4 days. Thanks again for checking Widgets, plugin deactivation/activation and the wp-admin file contents.

What we decided was that best thing to do was to create a new wp-admin BulletProof Mode option that allows folks to disable wp-admin BulletProof Mode if they have Go Daddy Managed WordPress hosting.

This help info was added to the BPS plugin FAQ page:
https://www.ads-software.com/plugins/bulletproof-security/faq/

Does BulletProof Security Work On All Web Hosts?
Yes, BulletProof Security works on all web hosts. There is one known issue with Go Daddy Managed WordPress Hosting (not Go Daddy standard hosting account types) where wp-admin .htaccess files are not allowed to be created or edited due to security restrictions for that hosting account type. As of BPS .50.6 a new option was added for wp-admin BulletProof Mode to enable or disable wp-admin BulletProof Mode. The Enable/Disable wp-admin BulletProof Mode option on the htaccess Core Security Modes page disables wp-admin .htaccess file displayed error messages, automation, updating and creation of wp-admin .htaccess files. Note: Some wp-admin .htaccess file inpage error checking was not changed, such as the inpage check on the Security Status tab page. This may be changed in the future, but it serves a useful troubleshooting purpose for now.

This is really great. Thank you – from all of us who needed this!!
I updated the BPS plugin. Then went to the new section and selected deactivate wp-admin.htaccess. Saved it.
Just to let you know that when I go into the security status I still get the red letters: “ERROR: An htaccess file was NOT found in your wp-admin folder.
BulletProof Mode for the wp-admin folder MUST also be activated when you have BulletProof Mode activated for the Root folder.”

Yep, we are intentionally leaving that inpage error check for now, but will probably decide to do something else with that in the future.

Note: Some wp-admin .htaccess file inpage error checking was not changed, such as the inpage check on the Security Status tab page. This may be changed in the future, but it serves a useful troubleshooting purpose for now.

OK. It confused me because it says “BulletProof Mode for the wp-admin folder MUST also be activated when you have BulletProof Mode activated for the Root folder.”

So… I’m protected, yes?

Normally that is true that wp-admin BulletProof Mode must be activated when Root BulletProof Mode is activated so that things like adding Widgets and deactivating/activating plugins work correctly. On Go Daddy Managed WordPress hosting since you cannot use/create a wp-admin .htaccess file and since you already checked adding Widgets and deactivating/activating plugins and they were working correctly then this means that you do not need a wp-admin .htaccess file in order for adding Widgets and deactivating/activating plugins to work correctly on Go Daddy Managed WordPress hosting.

Your /wp-admin folder is protected by whatever Go Daddy Managed WordPress hosting is using for security on the /wp-admin folder since BPS is restricted from adding a wp-admin .htaccess file to the /wp-admin folder. All other BPS security methods/features/options, etc. work normally on Go Daddy Managed WordPress hosting.

Also BPS Login Security protects the wp-admin folder / WordPress backend admin area since someone would have to be logged in to be able access the wp-admin folder / WordPress backend admin area.

Awesome. Thank you so much for explaining all of this. I really didn’t feel that I had a solid grasp on what was going on with my security. I feel pretty good about my protection now, and I feel like I understand what’s going on with it.

Hello,

Odd situation I’m getting this error however my host is not Godaddy.
I haven’t seen this issue before and have using BFS for many months.
Please advise thanks

……

BulletProof Security ~ htaccess Core
wp-admin Folder BulletProof Mode was not activated. Either it is disabled on the Security Modes page or you have a Go Daddy Managed WordPress Hosting account. The wp-admin folder is restricted on GDMW hosting account types.

The htaccess file that is activated in your root folder is:
BULLETPROOF .51.7 >>>>>>> SECURE .HTACCESS

√ wp-config.php is htaccess protected by BPS
√ php.ini and php5.ini are htaccess protected by BPS

√ Deny All protection activated for BPS Master /htaccess folder
√ Deny All protection activated for /wp-content/bps-backup folder

wp-admin BulletProof Mode is disabled on the Security Modes page or you have a Go Daddy Managed WordPress Hosting account type.

@ujoshi333 – Please create a new thread topic since your question is not related to GoDaddy Managed WordPress hosting (a special type of GoDaddy hosting and not standard GoDaddy hosting): https://www.ads-software.com/support/plugin/bulletproof-security