BulletProof Pro?
-
I have installed the latest BulletProof on a site that was hacked by a javascript hack that added the following lines to every php file header in WordPress including plugins.
[ redacted, please don’t post a malware snippet like that again. ]
…that’s just the first few lines. According to a 6scan this was due to a comments hack through the wordpress comments file.
It killed my plugins and would quickly rewrite the javascript in all files in my website WordPress template. I finally had to completely remove the template, re-update 3.5.1, and base my site off a re-uploaded Twenty Twelve theme.
As soon as I thought I had eliminated everything — I could not find any evidence of the code being written into the WP tables themselves or into the WP comments values.
Using BulletProof I seem to be clean after a day. Now I want to buy BulletProof Pro.
Especially since I see that you say you “firewall” the /plugins folder.But it leads to these 3 questions —
Running a free scan from 6scan it alerted me to a problem with the commenting.
1) Do I understand that even with a BulletProof Pro plugin that you do not offer the same kind of online Scanning for Problems that 6scan does?
2) Does BulletProof Pro prevent the kind of javascript injection method that may have been used in this hack via the word press commenting file?
I did not have commenting enabled before but I have now commented out the PHP call to the commenting file in two TwentyTwelve template files. AND deleted the wp-comments-post.php file altogether.
3) Do you have a description from your experience of how WP sites are getting hacked with this same header injection hack that I experienced? Year after year WP sites get hacked with some form of the same hack yet when you Google this subject it does not seem that even WordPress itself alerts you to prevent just this sort of thing.
(I did change my FTP password — it was unguessable before and it is still “unguessable”)
https://www.ads-software.com/extend/plugins/bulletproof-security/
- The topic ‘BulletProof Pro?’ is closed to new replies.