BulletProof Security - Version 1.1

Version Description

View BPS Changelog|Whats New: https://forum.ait-pro.com/forums/topic/bps-changelog/

Release Info

Developer	AITpro
Plugin	BulletProof Security
Version	1.1
Comparing to
See all releases

Code changes from version 1.0 to 1.1

Files changed (5) hide show

admin/htaccess/secure.htaccess +1 -1
admin/htaccess/wpadmin-secure.htaccess +1 -1
bulletproof-security.php +4 -4
includes/functions.php +3 -0
readme.txt +2 -2

admin/htaccess/secure.htaccess CHANGED Viewed

	@@ -1,4 +1,4 @@
1	- # BULLETPROOF 1.0 SECURE .HTACCESS
2
3	# PHP/PHP.INI HANDLER/CACHE CODE
4	# Use BPS Custom Code to add php/php.ini Handler and Cache htaccess code and to save it permanently.


1	+ # BULLETPROOF 1.1 SECURE .HTACCESS
2
3	# PHP/PHP.INI HANDLER/CACHE CODE
4	# Use BPS Custom Code to add php/php.ini Handler and Cache htaccess code and to save it permanently.

admin/htaccess/wpadmin-secure.htaccess CHANGED Viewed

	@@ -1,4 +1,4 @@
1	- # BULLETPROOF 1.0 WP-ADMIN SECURE .HTACCESS
2
3	# DO NOT ADD URL REWRITING IN THIS FILE OR WORDPRESS WILL BREAK
4	# RewriteRule ^(.*)$ - [F] works in /wp-admin without breaking WordPress


1	+ # BULLETPROOF 1.1 WP-ADMIN SECURE .HTACCESS
2
3	# DO NOT ADD URL REWRITING IN THIS FILE OR WORDPRESS WILL BREAK
4	# RewriteRule ^(.*)$ - [F] works in /wp-admin without breaking WordPress

bulletproof-security.php CHANGED Viewed

	@@ -5,7 +5,7 @@ Plugin URI: https://forum.ait-pro.com/read-me-first/
5	Text Domain: bulletproof-security
6	Domain Path: /languages/
7	Description: <strong>Feature Highlights:</strong> Setup Wizard • .htaccess Website Security Protection (Firewalls) • Security Logging\|HTTP Error Logging • DB Backup • DB Table Prefix Changer • Login Security & Monitoring • Idle Session Logout (ISL) • Auth Cookie Expiration (ACE) • UI Theme Skin Changer • System Info: Extensive System, Server and Security Status Information • FrontEnd\|BackEnd Maintenance Mode
8	- Version: 1.0
9	Author: AITpro \| Edward Alexander
10	Author URI: https://forum.ait-pro.com/read-me-first/
11	*/
	@@ -28,9 +28,9 @@ Author URI: https://forum.ait-pro.com/read-me-first/
28	*/
29
30	// BPS variables
31	- define( 'BULLETPROOF_VERSION', '1.0' );
32	- $bps_last_version = '.~~54.5~~';
33	- $bps_version = '1.0';
34	$aitpro_bullet = '<img src="'.plugins_url('/bulletproof-security/admin/images/aitpro-bullet.png').'" style="padding:0px 3px 0px 3px;" />';
35	// Top div & bottom div
36	$bps_topDiv = '<div id="message" class="updated" style="background-color:#dfecf2;border:1px solid #999;-moz-border-radius-topleft:3px;-webkit-border-top-left-radius:3px;-khtml-border-top-left-radius:3px;border-top-left-radius:3px;-moz-border-radius-topright:3px;-webkit-border-top-right-radius:3px;-khtml-border-top-right-radius:3px;border-top-right-radius:3px;-webkit-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);-moz-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);"><p>';


5	Text Domain: bulletproof-security
6	Domain Path: /languages/
7	Description: <strong>Feature Highlights:</strong> Setup Wizard • .htaccess Website Security Protection (Firewalls) • Security Logging\|HTTP Error Logging • DB Backup • DB Table Prefix Changer • Login Security & Monitoring • Idle Session Logout (ISL) • Auth Cookie Expiration (ACE) • UI Theme Skin Changer • System Info: Extensive System, Server and Security Status Information • FrontEnd\|BackEnd Maintenance Mode
8	+ Version: 1.1
9	Author: AITpro \| Edward Alexander
10	Author URI: https://forum.ait-pro.com/read-me-first/
11	*/

28	*/
29
30	// BPS variables
31	+ define( 'BULLETPROOF_VERSION', '1.1' );
32	+ $bps_last_version = '1.0';
33	+ $bps_version = '1.1';
34	$aitpro_bullet = '<img src="'.plugins_url('/bulletproof-security/admin/images/aitpro-bullet.png').'" style="padding:0px 3px 0px 3px;" />';
35	// Top div & bottom div
36	$bps_topDiv = '<div id="message" class="updated" style="background-color:#dfecf2;border:1px solid #999;-moz-border-radius-topleft:3px;-webkit-border-top-left-radius:3px;-khtml-border-top-left-radius:3px;border-top-left-radius:3px;-moz-border-radius-topright:3px;-webkit-border-top-right-radius:3px;-khtml-border-top-right-radius:3px;border-top-right-radius:3px;-webkit-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);-moz-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);"><p>';

includes/functions.php CHANGED Viewed

	@@ -300,6 +300,7 @@ function bps_root_htaccess_status_dashboard() {
300	// BPS 1.0: version numbering change. The string replace is on line 365
301	$BPSVpattern = '/BULLETPROOF\s\.[\d](.*)[\>]/';
302	$BPSVpattern2 = '/BULLETPROOF\s[\d]\.[\d]/';

303	$BPSVreplace = "BULLETPROOF $bps_version";
304	}
305
	@@ -369,6 +370,8 @@ switch ( $bps_version ) {
369	$stringReplace = preg_replace($BPSVpattern, $BPSVreplace, $stringReplace);
370	} elseif ( preg_match($BPSVpattern2, $stringReplace) ) {
371	$stringReplace = preg_replace($BPSVpattern2, $BPSVreplace, $stringReplace);


372	}
373
374	$stringReplace = str_replace("RewriteCond %{HTTP_USER_AGENT} (libwww-perl\|wget\|python\|nikto\|curl\|scan\|java\|winhttp\|clshttp\|loader) [NC,OR]", "RewriteCond %{HTTP_USER_AGENT} (havij\|libwww-perl\|wget\|python\|nikto\|curl\|scan\|java\|winhttp\|clshttp\|loader) [NC,OR]", $stringReplace);


300	// BPS 1.0: version numbering change. The string replace is on line 365
301	$BPSVpattern = '/BULLETPROOF\s\.[\d](.*)[\>]/';
302	$BPSVpattern2 = '/BULLETPROOF\s[\d]\.[\d]/';
303	+ $BPSVpattern3 = '/BULLETPROOF\s\.[\d][\d]\.[\d]/';
304	$BPSVreplace = "BULLETPROOF $bps_version";
305	}
306

370	$stringReplace = preg_replace($BPSVpattern, $BPSVreplace, $stringReplace);
371	} elseif ( preg_match($BPSVpattern2, $stringReplace) ) {
372	$stringReplace = preg_replace($BPSVpattern2, $BPSVreplace, $stringReplace);
373	+ } elseif ( preg_match($BPSVpattern3, $stringReplace) ) {
374	+ $stringReplace = preg_replace($BPSVpattern3, $BPSVreplace, $stringReplace);
375	}
376
377	$stringReplace = str_replace("RewriteCond %{HTTP_USER_AGENT} (libwww-perl\|wget\|python\|nikto\|curl\|scan\|java\|winhttp\|clshttp\|loader) [NC,OR]", "RewriteCond %{HTTP_USER_AGENT} (havij\|libwww-perl\|wget\|python\|nikto\|curl\|scan\|java\|winhttp\|clshttp\|loader) [NC,OR]", $stringReplace);

readme.txt CHANGED Viewed

	@@ -3,8 +3,8 @@ Contributors: AITpro
3	Donate link: https://wordpress.org/support/view/plugin-reviews/bulletproof-security?rate=5#postform
4	Tags: 400, 401, 403, 404, 405, 410, 503, apache, antivirus, attack, auth cookie, authenticate, authentication, authentication cookie, author, author id, auto-logout, automatic, backdoor, backup, ban, base64, block, blocked, Bot, brute force, bruteforce, bulletproof, chmod, code, coming soon, cookie, cookie expiration, crack, cracking, crlf, csrf, database backup, database table prefix, db backup, db table backup, db table prefix, developer, development, directory traversal, dos, ddos, dump, empty plugin, encode, enumeration, error log, event listener, expire, exploit, exploitation, file inclusion, firewall, hack, hackers, hidden file, hidden plugin, htaccess, http log, idle, idle logout, idle time, idle user, idle session, inactive logout, inactive time, inactive user, inactive session, infect, infected, infection, injection, lfi, linux, litespeed, lock, log, log off, logging, login alerts, login security, login, maintenance mode, maintenance, malicious, malware, multisite, mysql, mysql backup, network, offline, optimize, optimization, path traversal, performance, permissions, pingback, prevent, prevention, privacy, private, protection, remember me, rfi, safe, safety, schedule backup, script, secure, security log, security, session, signout, spam, spammers, speed increase, speed boost, sql injection, system information, system info, timeout, trackback, unavailable, under construction, user id, user account, user role, username, users, virus, viruses, vulnerable, vulnerability, website backup, wordpress backup, website security, windows, wordpress security, xmlrpc, xml-rpc, xss
5	Requires at least: 3.7
6	- Tested up to: 4.7
7	- Stable tag: 1.0
8	License: GPLv2 or later
9	License URI: http://www.gnu.org/licenses/gpl-2.0.html
10


3	Donate link: https://wordpress.org/support/view/plugin-reviews/bulletproof-security?rate=5#postform
4	Tags: 400, 401, 403, 404, 405, 410, 503, apache, antivirus, attack, auth cookie, authenticate, authentication, authentication cookie, author, author id, auto-logout, automatic, backdoor, backup, ban, base64, block, blocked, Bot, brute force, bruteforce, bulletproof, chmod, code, coming soon, cookie, cookie expiration, crack, cracking, crlf, csrf, database backup, database table prefix, db backup, db table backup, db table prefix, developer, development, directory traversal, dos, ddos, dump, empty plugin, encode, enumeration, error log, event listener, expire, exploit, exploitation, file inclusion, firewall, hack, hackers, hidden file, hidden plugin, htaccess, http log, idle, idle logout, idle time, idle user, idle session, inactive logout, inactive time, inactive user, inactive session, infect, infected, infection, injection, lfi, linux, litespeed, lock, log, log off, logging, login alerts, login security, login, maintenance mode, maintenance, malicious, malware, multisite, mysql, mysql backup, network, offline, optimize, optimization, path traversal, performance, permissions, pingback, prevent, prevention, privacy, private, protection, remember me, rfi, safe, safety, schedule backup, script, secure, security log, security, session, signout, spam, spammers, speed increase, speed boost, sql injection, system information, system info, timeout, trackback, unavailable, under construction, user id, user account, user role, username, users, virus, viruses, vulnerable, vulnerability, website backup, wordpress backup, website security, windows, wordpress security, xmlrpc, xml-rpc, xss
5	Requires at least: 3.7
6	+ Tested up to: 4.8
7	+ Stable tag: 1.1
8	License: GPLv2 or later
9	License URI: http://www.gnu.org/licenses/gpl-2.0.html
10