BulletProof Security - Version 2.8

Version Description

Download this release

Release Info

Developer AITpro
Plugin Icon 128x128 BulletProof Security
Version 2.8
Comparing to
See all releases

Code changes from version 2.7 to 2.8

Files changed (19) hide show
  1. admin/core/core-forms.php +8 -0
  2. admin/core/core.php +15 -15
  3. admin/htaccess/secure.htaccess +1 -1
  4. admin/htaccess/wpadmin-secure.htaccess +1 -1
  5. admin/includes/admin.php +3 -1
  6. admin/login/lsm-help-text.php +1 -1
  7. admin/maintenance/maintenance.php +4 -4
  8. admin/mscan/mscan.php +7 -7
  9. admin/security-log/security-log.php +5 -5
  10. admin/system-info/system-info.php +22 -0
  11. admin/wizard/pwizard-autofix.php +3 -3
  12. admin/wizard/wizard.php +7 -7
  13. bulletproof-security.php +4 -4
  14. includes/general-functions.php +2 -1
  15. includes/hud-autofix-whitelist.php +1 -1
  16. includes/hud-dismiss-functions.php +39 -1
  17. includes/login-security.php +25 -7
  18. languages/bulletproof-security.pot +290 -234
  19. readme.txt +2 -2
admin/core/core-forms.php CHANGED
@@ -646,6 +646,14 @@ if ( isset( $_POST['bpsResetDismissSubmit'] ) && current_user_can('manage_option
646
  echo $text;
647
  }
648
 
 
 
 
 
 
 
 
 
649
  echo '<div class="bps-message-button" style="width:90px;margin-bottom:9px;"><a href="'.admin_url( 'admin.php?page=bulletproof-security/admin/core/core.php#bps-tabs-7' ).'">'.__('Refresh Status', 'bulletproof-security').'</a></div>';
650
  echo '</p></div>';
651
  }
646
  echo $text;
647
  }
648
 
649
+ if ( ! delete_user_meta($user_id, 'bps_ignore_jtc_lite_notice') ) {
650
+ $text = __('The JTC-Lite New Feature Notice is NOT set. Nothing to reset.', 'bulletproof-security').'<br>';
651
+ echo $text;
652
+ } else {
653
+ $text = '<span style="color:#008000;">'.__('Success! The JTC-Lite New Feature Notice is reset.', 'bulletproof-security').'</span><br>';
654
+ echo $text;
655
+ }
656
+
657
  echo '<div class="bps-message-button" style="width:90px;margin-bottom:9px;"><a href="'.admin_url( 'admin.php?page=bulletproof-security/admin/core/core.php#bps-tabs-7' ).'">'.__('Refresh Status', 'bulletproof-security').'</a></div>';
658
  echo '</p></div>';
659
  }
admin/core/core.php CHANGED
@@ -276,7 +276,7 @@ global $bps_version;
276
  <?php wp_nonce_field('bulletproof_security_rbm_activate'); ?>
277
 
278
  <div id="RBM-buttons" style="float:left;padding-right:20px;">
279
- <input type="submit" name="Submit-RBM-Activate" style="margin:10px 0px 10px 0px;width:84px" value="<?php esc_attr_e('Activate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Activate Root Folder BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
280
  </div>
281
  </form>
282
 
@@ -284,7 +284,7 @@ global $bps_version;
284
  <?php wp_nonce_field('bulletproof_security_rbm_deactivate'); ?>
285
 
286
  <div id="RBM-buttons" style="">
287
- <input type="submit" name="Submit-RBM-Deactivate" style="margin:10px 0px 10px 0px;width:84px" value="<?php esc_attr_e('Deactivate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Deactivate Root Folder BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
288
  </div>
289
  </form>
290
 
@@ -294,7 +294,7 @@ global $bps_version;
294
  <?php wp_nonce_field('bulletproof_security_rbm_activate_network'); ?>
295
 
296
  <div id="RBM-buttons" style="float:left;padding-right:20px;">
297
- <input type="submit" name="Submit-RBM-Activate-Network" style="margin:10px 0px 10px 0px;width:84px" value="<?php esc_attr_e('Activate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Activate Root Folder BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
298
  </div>
299
  </form>
300
 
@@ -302,7 +302,7 @@ global $bps_version;
302
  <?php wp_nonce_field('bulletproof_security_rbm_deactivate_network'); ?>
303
 
304
  <div id="RBM-buttons" style="">
305
- <input type="submit" name="Submit-RBM-Deactivate-Network" style="margin:10px 0px 10px 0px;width:84px" value="<?php esc_attr_e('Deactivate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Deactivate Root Folder BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
306
  </div>
307
  </form>
308
 
@@ -383,7 +383,7 @@ global $bps_version;
383
  <?php wp_nonce_field('bulletproof_security_wbm_activate'); ?>
384
 
385
  <div id="WBM-buttons" style="float:left;padding-right:20px;">
386
- <input type="submit" name="Submit-WBM-Activate" style="margin:10px 0px 10px 0px;width:84px" value="<?php esc_attr_e('Activate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Activate wp-admin Folder BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
387
  </div>
388
  </form>
389
 
@@ -391,7 +391,7 @@ global $bps_version;
391
  <?php wp_nonce_field('bulletproof_security_wbm_deactivate'); ?>
392
 
393
  <div id="WBM-buttons" style="">
394
- <input type="submit" name="Submit-WBM-Deactivate" style="margin:10px 0px 10px 0px;width:84px" value="<?php esc_attr_e('Deactivate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Deactivate wp-admin Folder BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
395
  </div>
396
  </form>
397
 
@@ -570,7 +570,7 @@ function bpsPro_mbm_status() {
570
  <?php wp_nonce_field('bulletproof_security_mbm_activate'); ?>
571
 
572
  <div id="MBM-buttons" style="float:left;padding-right:20px;">
573
- <input type="submit" name="Submit-MBM-Activate" style="margin:10px 0px 10px 0px;width:84px" value="<?php esc_attr_e('Activate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Activate MBM BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
574
  </div>
575
  </form>
576
 
@@ -578,7 +578,7 @@ function bpsPro_mbm_status() {
578
  <?php wp_nonce_field('bulletproof_security_mbm_deactivate'); ?>
579
 
580
  <div id="MBM-buttons" style="float:left;padding-right:20px;">
581
- <input type="submit" name="Submit-MBM-Deactivate" style="margin:10px 0px 10px 0px;width:84px" value="<?php esc_attr_e('Deactivate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Deactivate MBM BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
582
  </div>
583
  </form>
584
 
@@ -646,7 +646,7 @@ function bpsPro_bbm_status() {
646
  <?php wp_nonce_field('bulletproof_security_bbm_activate'); ?>
647
 
648
  <div id="BBM-buttons" style="float:left;padding-right:20px;">
649
- <input type="submit" name="Submit-BBM-Activate" style="margin:10px 0px 10px 0px;width:84px" value="<?php esc_attr_e('Activate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Activate BBM BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
650
  </div>
651
  </form>
652
 
@@ -654,7 +654,7 @@ function bpsPro_bbm_status() {
654
  <?php wp_nonce_field('bulletproof_security_bbm_deactivate'); ?>
655
 
656
  <div id="BBM-buttons" style="float:left;padding-right:20px;">
657
- <input type="submit" name="Submit-BBM-Deactivate" style="margin:10px 0px 10px 0px;width:84px" value="<?php esc_attr_e('Deactivate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Caution: BPS Backup Folder BulletProof Mode (BBM) should only be deactivated for testing or troubleshooting. Be sure to activate BBM BulletProof Mode after you are done testing or troubleshooting.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Click OK to Deactivate BBM BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
658
  </div>
659
  </form>
660
 
@@ -1212,7 +1212,7 @@ if ( isset( $_POST['submit-ProFlockUnLock'] ) && current_user_can('manage_option
1212
  <div id="bpsLockHtaccess">
1213
  <form name="bpsFlockLockForm" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/core/core.php#bps-tabs-6' ); ?>" method="post">
1214
  <?php wp_nonce_field('bulletproof_security_flock_lock'); ?>
1215
- <input type="submit" name="submit-ProFlockLock" value="<?php esc_attr_e('Lock htaccess File', 'bulletproof-security'); ?>" class="button bps-button" style="width:138px" onclick="return confirm('<?php $text = __('Click OK to Lock your Root htaccess file or click Cancel.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Note: The File Open and Write Test window will still display the last status of the file as Unlocked. To see the current status refresh your browser.', 'bulletproof-security'); echo $text; ?>')" />
1216
  </form>
1217
  </div>
1218
 
@@ -1220,7 +1220,7 @@ if ( isset( $_POST['submit-ProFlockUnLock'] ) && current_user_can('manage_option
1220
  <form name="bpsFlockUnLockForm" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/core/core.php#bps-tabs-6' ); ?>" method="post">
1221
  <?php wp_nonce_field('bulletproof_security_flock_unlock'); ?>
1222
 
1223
- <input type="submit" name="submit-ProFlockUnLock" value="<?php esc_attr_e('Unlock htaccess File', 'bulletproof-security'); ?>" class="button bps-button" style="width:138px" onclick="return confirm('<?php $text = __('Click OK to Unlock your Root htaccess file or click Cancel.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Note: The File Open and Write Test window will still display the last status of the file as Locked. To see the current status refresh your browser.', 'bulletproof-security'); echo $text; ?>')" />
1224
  </form>
1225
  </div>
1226
 
@@ -1229,7 +1229,7 @@ if ( isset( $_POST['submit-ProFlockUnLock'] ) && current_user_can('manage_option
1229
  <?php settings_fields('bulletproof_security_options_autolock'); ?>
1230
  <?php $options = get_option('bulletproof_security_options_autolock'); ?>
1231
  <input type="hidden" name="bulletproof_security_options_autolock[bps_root_htaccess_autolock]" value="On" />
1232
- <input type="submit" name="submit-RootHtaccessAutoLock-On" value="<?php esc_attr_e('Turn On AutoLock', 'bulletproof-security'); ?>" class="button bps-button" style="width:138px" onclick="return confirm('<?php $text = __('Turning AutoLock On will allow BPS Pro to automatically lock your Root .htaccess file. For some folks this causes a problem because their Web Hosts do not allow the Root .htaccess file to be locked. For most folks allowing BPS Pro to AutoLock the Root .htaccess file works fine.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Click OK to Turn AutoLock On or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
1233
 
1234
  <?php if ( $options['bps_root_htaccess_autolock'] == '' || $options['bps_root_htaccess_autolock'] == 'On' ) { echo '<label class="autolock_status" style="font-weight:bold;">'.__('On', 'bulletproof-security').'</label>'; } ?>
1235
 
@@ -1241,7 +1241,7 @@ if ( isset( $_POST['submit-ProFlockUnLock'] ) && current_user_can('manage_option
1241
  <?php settings_fields('bulletproof_security_options_autolock'); ?>
1242
  <?php $options = get_option('bulletproof_security_options_autolock'); ?>
1243
  <input type="hidden" name="bulletproof_security_options_autolock[bps_root_htaccess_autolock]" value="Off" />
1244
- <input type="submit" name="submit-RootHtaccessAutoLock-Off" value="<?php esc_attr_e('Turn Off AutoLock', 'bulletproof-security'); ?>" class="button bps-button" style="width:138px" onclick="return confirm('<?php $text = __('Turning AutoLock Off will prevent BPS Pro from automatically locking your Root .htaccess file. For some folks this is necessary because their Web Hosts do not allow the Root .htaccess file to be locked. For most folks allowing BPS Pro to AutoLock the Root .htaccess file works fine.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Click OK to Turn AutoLock Off or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
1245
 
1246
  <?php if ( $options['bps_root_htaccess_autolock'] == 'Off') { echo '<label class="autolock_status" style="font-weight:bold;">'.__('Off', 'bulletproof-security').'</label>'; } ?>
1247
 
@@ -1716,7 +1716,7 @@ $text = '<h3><span class="blue-bold">'.__('The Complete Website Security Solutio
1716
  <div id="milestone" style="margin-top:5px">6 Year Milestone: 8-1-2017 | First Public Release: 8-1-2011</div>
1717
  <div class="pro-links">
1718
  <?php
1719
- echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '13.3/13.3.1', 'https://www.ait-pro.com/aitpro-blog/5471/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-13-3/' ).'<br>';
1720
  echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '13.2', 'https://www.ait-pro.com/aitpro-blog/5466/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-13-2/' ).'<br>';
1721
  echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '13/13.1', 'https://www.ait-pro.com/aitpro-blog/5457/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-13/' ).'<br>';
1722
  echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '12.9/12.9.1', 'https://www.ait-pro.com/aitpro-blog/5446/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-12-9/' ).'<br>';
276
  <?php wp_nonce_field('bulletproof_security_rbm_activate'); ?>
277
 
278
  <div id="RBM-buttons" style="float:left;padding-right:20px;">
279
+ <input type="submit" name="Submit-RBM-Activate" style="margin:10px 0px 10px 0px;width:84px;height:auto;white-space:normal" value="<?php esc_attr_e('Activate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Activate Root Folder BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
280
  </div>
281
  </form>
282
 
284
  <?php wp_nonce_field('bulletproof_security_rbm_deactivate'); ?>
285
 
286
  <div id="RBM-buttons" style="">
287
+ <input type="submit" name="Submit-RBM-Deactivate" style="margin:10px 0px 10px 0px;width:84px;height:auto;white-space:normal" value="<?php esc_attr_e('Deactivate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Deactivate Root Folder BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
288
  </div>
289
  </form>
290
 
294
  <?php wp_nonce_field('bulletproof_security_rbm_activate_network'); ?>
295
 
296
  <div id="RBM-buttons" style="float:left;padding-right:20px;">
297
+ <input type="submit" name="Submit-RBM-Activate-Network" style="margin:10px 0px 10px 0px;width:84px;height:auto;white-space:normal" value="<?php esc_attr_e('Activate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Activate Root Folder BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
298
  </div>
299
  </form>
300
 
302
  <?php wp_nonce_field('bulletproof_security_rbm_deactivate_network'); ?>
303
 
304
  <div id="RBM-buttons" style="">
305
+ <input type="submit" name="Submit-RBM-Deactivate-Network" style="margin:10px 0px 10px 0px;width:84px;height:auto;white-space:normal" value="<?php esc_attr_e('Deactivate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Deactivate Root Folder BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
306
  </div>
307
  </form>
308
 
383
  <?php wp_nonce_field('bulletproof_security_wbm_activate'); ?>
384
 
385
  <div id="WBM-buttons" style="float:left;padding-right:20px;">
386
+ <input type="submit" name="Submit-WBM-Activate" style="margin:10px 0px 10px 0px;width:84px;height:auto;white-space:normal" value="<?php esc_attr_e('Activate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Activate wp-admin Folder BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
387
  </div>
388
  </form>
389
 
391
  <?php wp_nonce_field('bulletproof_security_wbm_deactivate'); ?>
392
 
393
  <div id="WBM-buttons" style="">
394
+ <input type="submit" name="Submit-WBM-Deactivate" style="margin:10px 0px 10px 0px;width:84px;height:auto;white-space:normal" value="<?php esc_attr_e('Deactivate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Deactivate wp-admin Folder BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
395
  </div>
396
  </form>
397
 
570
  <?php wp_nonce_field('bulletproof_security_mbm_activate'); ?>
571
 
572
  <div id="MBM-buttons" style="float:left;padding-right:20px;">
573
+ <input type="submit" name="Submit-MBM-Activate" style="margin:10px 0px 10px 0px;width:84px;height:auto;white-space:normal" value="<?php esc_attr_e('Activate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Activate MBM BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
574
  </div>
575
  </form>
576
 
578
  <?php wp_nonce_field('bulletproof_security_mbm_deactivate'); ?>
579
 
580
  <div id="MBM-buttons" style="float:left;padding-right:20px;">
581
+ <input type="submit" name="Submit-MBM-Deactivate" style="margin:10px 0px 10px 0px;width:84px;height:auto;white-space:normal" value="<?php esc_attr_e('Deactivate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Deactivate MBM BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
582
  </div>
583
  </form>
584
 
646
  <?php wp_nonce_field('bulletproof_security_bbm_activate'); ?>
647
 
648
  <div id="BBM-buttons" style="float:left;padding-right:20px;">
649
+ <input type="submit" name="Submit-BBM-Activate" style="margin:10px 0px 10px 0px;width:84px;height:auto;white-space:normal" value="<?php esc_attr_e('Activate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Click OK to Activate BBM BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
650
  </div>
651
  </form>
652
 
654
  <?php wp_nonce_field('bulletproof_security_bbm_deactivate'); ?>
655
 
656
  <div id="BBM-buttons" style="float:left;padding-right:20px;">
657
+ <input type="submit" name="Submit-BBM-Deactivate" style="margin:10px 0px 10px 0px;width:84px;height:auto;white-space:normal" value="<?php esc_attr_e('Deactivate', 'bulletproof-security') ?>" class="button bps-button" onclick="return confirm('<?php $text = __('Caution: BPS Backup Folder BulletProof Mode (BBM) should only be deactivated for testing or troubleshooting. Be sure to activate BBM BulletProof Mode after you are done testing or troubleshooting.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Click OK to Deactivate BBM BulletProof Mode or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
658
  </div>
659
  </form>
660
 
1212
  <div id="bpsLockHtaccess">
1213
  <form name="bpsFlockLockForm" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/core/core.php#bps-tabs-6' ); ?>" method="post">
1214
  <?php wp_nonce_field('bulletproof_security_flock_lock'); ?>
1215
+ <input type="submit" name="submit-ProFlockLock" value="<?php esc_attr_e('Lock htaccess File', 'bulletproof-security'); ?>" class="button bps-button" style="width:138px;height:auto;white-space:normal" onclick="return confirm('<?php $text = __('Click OK to Lock your Root htaccess file or click Cancel.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Note: The File Open and Write Test window will still display the last status of the file as Unlocked. To see the current status refresh your browser.', 'bulletproof-security'); echo $text; ?>')" />
1216
  </form>
1217
  </div>
1218
 
1220
  <form name="bpsFlockUnLockForm" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/core/core.php#bps-tabs-6' ); ?>" method="post">
1221
  <?php wp_nonce_field('bulletproof_security_flock_unlock'); ?>
1222
 
1223
+ <input type="submit" name="submit-ProFlockUnLock" value="<?php esc_attr_e('Unlock htaccess File', 'bulletproof-security'); ?>" class="button bps-button" style="width:138px;height:auto;white-space:normal" onclick="return confirm('<?php $text = __('Click OK to Unlock your Root htaccess file or click Cancel.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Note: The File Open and Write Test window will still display the last status of the file as Locked. To see the current status refresh your browser.', 'bulletproof-security'); echo $text; ?>')" />
1224
  </form>
1225
  </div>
1226
 
1229
  <?php settings_fields('bulletproof_security_options_autolock'); ?>
1230
  <?php $options = get_option('bulletproof_security_options_autolock'); ?>
1231
  <input type="hidden" name="bulletproof_security_options_autolock[bps_root_htaccess_autolock]" value="On" />
1232
+ <input type="submit" name="submit-RootHtaccessAutoLock-On" value="<?php esc_attr_e('Turn On AutoLock', 'bulletproof-security'); ?>" class="button bps-button" style="width:138px;height:auto;white-space:normal" onclick="return confirm('<?php $text = __('Turning AutoLock On will allow BPS Pro to automatically lock your Root .htaccess file. For some folks this causes a problem because their Web Hosts do not allow the Root .htaccess file to be locked. For most folks allowing BPS Pro to AutoLock the Root .htaccess file works fine.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Click OK to Turn AutoLock On or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
1233
 
1234
  <?php if ( $options['bps_root_htaccess_autolock'] == '' || $options['bps_root_htaccess_autolock'] == 'On' ) { echo '<label class="autolock_status" style="font-weight:bold;">'.__('On', 'bulletproof-security').'</label>'; } ?>
1235
 
1241
  <?php settings_fields('bulletproof_security_options_autolock'); ?>
1242
  <?php $options = get_option('bulletproof_security_options_autolock'); ?>
1243
  <input type="hidden" name="bulletproof_security_options_autolock[bps_root_htaccess_autolock]" value="Off" />
1244
+ <input type="submit" name="submit-RootHtaccessAutoLock-Off" value="<?php esc_attr_e('Turn Off AutoLock', 'bulletproof-security'); ?>" class="button bps-button" style="width:138px;height:auto;white-space:normal" onclick="return confirm('<?php $text = __('Turning AutoLock Off will prevent BPS Pro from automatically locking your Root .htaccess file. For some folks this is necessary because their Web Hosts do not allow the Root .htaccess file to be locked. For most folks allowing BPS Pro to AutoLock the Root .htaccess file works fine.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Click OK to Turn AutoLock Off or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
1245
 
1246
  <?php if ( $options['bps_root_htaccess_autolock'] == 'Off') { echo '<label class="autolock_status" style="font-weight:bold;">'.__('Off', 'bulletproof-security').'</label>'; } ?>
1247
 
1716
  <div id="milestone" style="margin-top:5px">6 Year Milestone: 8-1-2017 | First Public Release: 8-1-2011</div>
1717
  <div class="pro-links">
1718
  <?php
1719
+ echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '13.3/13.3.1/13.3.2/13.3.3', 'https://www.ait-pro.com/aitpro-blog/5471/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-13-3/' ).'<br>';
1720
  echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '13.2', 'https://www.ait-pro.com/aitpro-blog/5466/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-13-2/' ).'<br>';
1721
  echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '13/13.1', 'https://www.ait-pro.com/aitpro-blog/5457/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-13/' ).'<br>';
1722
  echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '12.9/12.9.1', 'https://www.ait-pro.com/aitpro-blog/5446/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-12-9/' ).'<br>';
admin/htaccess/secure.htaccess CHANGED
@@ -1,4 +1,4 @@
1
- # BULLETPROOF 2.7 SECURE .HTACCESS
2
 
3
  # PHP/PHP.INI HANDLER/CACHE CODE
4
  # Use BPS Custom Code to add php/php.ini Handler and Cache htaccess code and to save it permanently.
1
+ # BULLETPROOF 2.8 SECURE .HTACCESS
2
 
3
  # PHP/PHP.INI HANDLER/CACHE CODE
4
  # Use BPS Custom Code to add php/php.ini Handler and Cache htaccess code and to save it permanently.
admin/htaccess/wpadmin-secure.htaccess CHANGED
@@ -1,4 +1,4 @@
1
- # BULLETPROOF 2.7 WP-ADMIN SECURE .HTACCESS
2
 
3
  # DO NOT ADD URL REWRITING IN THIS FILE OR WORDPRESS WILL BREAK
4
  # RewriteRule ^(.*)$ - [F] works in /wp-admin without breaking WordPress
1
+ # BULLETPROOF 2.8 WP-ADMIN SECURE .HTACCESS
2
 
3
  # DO NOT ADD URL REWRITING IN THIS FILE OR WORDPRESS WILL BREAK
4
  # RewriteRule ^(.*)$ - [F] works in /wp-admin without breaking WordPress
admin/includes/admin.php CHANGED
@@ -204,6 +204,7 @@ register_setting('bulletproof_security_options_GDMW', 'bulletproof_security_opti
204
  }
205
 
206
  // Copy and rename the blank.txt file to /master-backups - used for MScan Stop Scan
 
207
  $MScanStop = WP_CONTENT_DIR . '/bps-backup/master-backups/mscan-stop.txt';
208
 
209
  if ( ! file_exists($MScanStop) ) {
@@ -829,7 +830,8 @@ require_once( ABSPATH . 'wp-admin/includes/plugin.php');
829
  delete_user_meta($user_id, 'bps_ignore_autoupdate_notice');
830
  delete_user_meta($user_id, 'bpsPro_ignore_EPC_plugin_notice');
831
  delete_user_meta($user_id, 'bps_ignore_mscan_notice');
832
-
 
833
  @unlink($wpadminHtaccess);
834
 
835
  if ( @unlink($RootHtaccess) || ! file_exists($RootHtaccess) ) {
204
  }
205
 
206
  // Copy and rename the blank.txt file to /master-backups - used for MScan Stop Scan
207
+ $BPSblank = WP_PLUGIN_DIR . '/bulletproof-security/admin/htaccess/blank.txt';
208
  $MScanStop = WP_CONTENT_DIR . '/bps-backup/master-backups/mscan-stop.txt';
209
 
210
  if ( ! file_exists($MScanStop) ) {
830
  delete_user_meta($user_id, 'bps_ignore_autoupdate_notice');
831
  delete_user_meta($user_id, 'bpsPro_ignore_EPC_plugin_notice');
832
  delete_user_meta($user_id, 'bps_ignore_mscan_notice');
833
+ delete_user_meta($user_id, 'bps_ignore_jtc_lite_notice');
834
+
835
  @unlink($wpadminHtaccess);
836
 
837
  if ( @unlink($RootHtaccess) || ! file_exists($RootHtaccess) ) {
admin/login/lsm-help-text.php CHANGED
@@ -16,7 +16,7 @@ if ( ! current_user_can('manage_options') ) {
16
  }
17
 
18
  /** JTC-Lite stripped down version of the BEAST - BPS Pro JTC Anti-Spam|Anti-Hacker **/
19
- $bps_modal_content2 = '<strong>'.__('If you forget what the CAPTCHA is and cannot login to your website use FTP or your web host control panel file manager and rename the /bulletproof-security/ plugin folder name to /_bulletproof-security/. Login to your website, go to the BPS JTC-Lite page and correct the CAPTCHA issue/problem. Rename the /_bulletproof-security/ plugin folder name back to /bulletproof-security/.', 'bulletproof-security').'</strong><br><br><strong>'.__('JTC-Lite Manual Setup Steps', 'bulletproof-security').'</strong><br>'.__('1. Enter a user friendly CAPTCHA in the JTC CAPTCHA text box.', 'bulletproof-security').'<br>'.__('2. Copy and paste the CAPTCHA you entered in the JTC CAPTCHA text box into the JTC ToolTip text box.', 'bulletproof-security').'<br>'.__('3. Either keep this default text "Hover or click the text box below" that will be displayed on all your forms or edit this text and add the message you want to add.', 'bulletproof-security').'<br>'.__('4. Check the Login Form checkbox and click the Save Options button.', 'bulletproof-security').'<br><br><strong>'.__('General Info about JTC-Lite', 'bulletproof-security').'</strong><br>'.__('JTC-Lite protects the WordPress Login form against automated SpamBot and HackerBot Brute Force Login attacks. Prevents User Accounts from being locked repeatedly by constant Brute Force Login attacks on your Login page. If you would like to protect all of your WordPress forms get the full version of JTC - BPS Pro JTC Anti-Spam|Anti-Hacker.', 'bulletproof-security').'<br><br><strong>'.__('JTC CAPTCHA: ', 'bulletproof-security').'</strong><br>'.__('This is the CAPTCHA that users will enter to Login to your website. You can use any numbers or characters and spaces in the CAPTCHA. You can even use HTML code characters except for these HTML code characters: < > \' " &. You can use a phrase for the CAPTCHA or it can be a single word or you can use your own original combination of words, numbers and HTML characters.', 'bulletproof-security').'<br><br><strong>'.__('Note: ', 'bulletproof-security').'</strong>'.__('It is recommended that you make your CAPTCHA user friendly, simple, clear and easy to understand for your users.', 'bulletproof-security').'<br><br><strong>'.__('JTC ToolTip: ', 'bulletproof-security').'</strong><br>'.__('This is the jQuery ToolTip message that is displayed to users when they hover or click on the CAPTCHA text box. This is where you will tell your users what they need to enter for the CAPTCHA. It can be a phrase, complete this sentence, a Hint or simply just Type/Enter: xxxxx or you can get as creative as you want to get with your jQuery ToolTip. Randomness is what makes a CAPTCHA very effective. JTC is designed with CAPTCHA randomness capability as one of its primary features.', 'bulletproof-security').'<br><br><strong>'.__('JTC Title|Text: ', 'bulletproof-security').'</strong><br>'.__('This is the text that is displayed to users above the CAPTCHA text box/Form Field.', 'bulletproof-security').$networkMUJTCText.'<br><br><strong>'.__('Enable JTC for WooCommerce (BPS Pro Only):', 'bulletproof-security').'</strong><br>'.__('Check this checkbox if you have the WooCommerce plugin installed if you would like to use BPS JTC on the WooCommerce custom login page. BPS JTC will still continue to work normally on the standard WordPress Forms: Login, Register, Lost Password, Comment, BuddyPress Register and BuddyPress Sidebar Login Forms when you check this checkbox. This checkbox option setting is not for turning JTC On or Off if you are using WooCommerce. Use the JTC Enable|Disable JTC For These Forms option checkboxes to enable or disable JTC on each of your Forms.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable JTC For These Forms (Only the Login Form CAPTCHA is available in BPS Free): ', 'bulletproof-security').'</strong><br>'.__('Checking a Form checkbox will display a CAPTCHA on that Form to all users. Unchecking a Form checkbox will remove the CAPTCHA on that Form for all users. The Comment Form is a special case and the CAPTCHA can be displayed based on the User Roles that you choose. See the Comment Form help section below.', 'bulletproof-security').'<br><br><strong>'.__('Comment Form: (only applies if Comment Form CAPTCHA is enabled/checked) ', 'bulletproof-security').'<br>'.__('Enable|Disable JTC For These Registered/Logged In User Roles (BPS Pro Only:', 'bulletproof-security').'</strong><br>'.__('Users must be logged into your website for the Comment Form User Roles to work. If you do not require that users are registered and logged in to post comments on your website then these JTC options will not have any effect. These options are only for registered and logged in users and only for your Comment Form if you are using this WordPress Discussion setting: Users must be registered and logged in to comment. If you do not want to require that users are registered and logged in to comment then the JTC Comment Form CAPTCHA will still work as long as you have this WordPress Discussion setting checked: Comment author must fill out name and email.', 'bulletproof-security').'<br><br>'.__('Checking a User Role checkbox will display a CAPTCHA to all users with that User Role on your website\'s Comment Form. Unchecking a User Role checkbox will remove the CAPTCHA from displaying to users with that User Role on your website\'s Comment Form. If your website is using/has Custom User Roles, your Custom User Roles will be displayed in a scrollable box below the standard WP User Roles: Administrator, Editor, Author, Contributor, Subscriber.', 'bulletproof-security').'<br><br><strong>'.__('Comment Form CAPTCHA Error message (BPS Pro Only):', 'bulletproof-security').'</strong><br>'.__('The Default JTC Comment Form CAPTCHA error message is: <strong>ERROR</strong>: Incorrect JTC CAPTCHA Entered. Click your Browser\'s back button and re-enter the JTC CAPTCHA. You can change or add to the default error message. This error message only applies to the Comment Form CAPTCHA error message and does not affect or change any of the other Form CAPTCHA error messages.', 'bulletproof-security').'<br><br><strong>'.__('Comment Form: CSS Styling (BPS Pro Only)', 'bulletproof-security').'</strong><br>'.__('You can position the JTC Title|Text Form label and the JTC CAPTCHA Form Input text box by editing the CSS in these text boxes. By default the position of the JTC Title|Text label and the JTC CAPTCHA Form Input text box is below your Comment Form submit button. For CSS code styling examples (see Forum Help Links at the top of this Read Me help window).', 'bulletproof-security').'<br><br><strong>'.__('Comment Form Label (BPS Pro Only):', 'bulletproof-security').'</strong><br>'.__('This is the JTC Title|Text label above the Form Input text box.', 'bulletproof-security').'<br><strong>'.__('Comment Form Input Text Box (BPS Pro Only):', 'bulletproof-security').'</strong><br>'.__('This is the JTC CAPTCHA Form Input text box.', 'bulletproof-security').'<br><br><strong>'.__('Additional Brute Force CAPTCHA Option: ', 'bulletproof-security').'</strong><br>'.__('If you do not allow anyone else to log into your website then here is an example of how JTC could be used as an additional Brute Force Login Protection feature.', 'bulletproof-security').'<br><br>'.__('Example: You create a JTC CAPTCHA: My Example CAPTCHA, you either leave the JTC ToolTip: text box blank or you create a Hint for yourself - JTC ToolTip: My Example Hint. If your JTC ToolTip: text box is blank then the CAPTCHA will not be displayed - only you will know what the CAPTCHA is. If you create a personal Hint for yourself then only you will know what the answer to the Hint is.', 'bulletproof-security').'</strong>';
20
 
21
  /** Idle Session Logout|Auth Cookie Expiration **/
22
  $bps_modal_content3 = '<strong>'.__('Idle Session Logout (ISL) General Info:', 'bulletproof-security').'</strong><br>'.__('Idle Session Logout (ISL) can be considered a "soft" setting vs ACE being a "hard" setting. ISL uses javascript Event Listeners to monitor Users activity for these ISL events: keyboard key is pressed, mouse button is pressed, mouse is moved, mouse wheel is rolled up or down, finger is placed on the touch surface/screen and finger already placed on the screen is moved across the screen.', 'bulletproof-security').'<br><br>'.__('If you set the Idle Session Logout Time to 60 minutes and the User is idle/inactive for 10 minutes and becomes active again then the Idle Session Logout Time starts all over again/is reset to 60 minutes. If a User is idle/inactive for 60 continuous minutes then that User will be automatically logged out of the site and redirected to the BPS Idle Session Logout Page.', 'bulletproof-security').'<br><br>'.__('When an idle/inactive User is logged out of the site they are redirected to the BPS Idle Session Logout Page URL if their Browser is still open. If the User\'s Browser is still open and the User is on another Browser tab window then the Browser tab window where they are logged into your site will be redirected to the BPS Idle Session Logout Page URL. If the User has closed their Browser without logging out of your site then that User will not be logged out of your site. You can use ACE to log User\'s out of your site whether or not they have closed their Browser. Idle Session Logouts are logged in the BPS Security Log file.', 'bulletproof-security').'<br><br><strong><font color="blue">'.__('After making any option setting changes click the Save Options button to save your new option settings. To reset ISL option settings back to the default ISL option settings, delete any custom values/entries you have entered in any text/textarea boxes and click the Save Options button.', 'bulletproof-security').'</font></strong><br><br><strong>'.__('Turn On|Turn Off:', 'bulletproof-security').'</strong><br>'.__('ISL is Turned Off by default. Select ISL On to turn ISL On. Select ISL Off to turn ISL Off.', 'bulletproof-security').'<br><br><strong>'.__('Idle Session Logout Time in Minutes:', 'bulletproof-security').'</strong><br>'.__('Enter the time in minutes for when an idle/inactive User should be logged out of your site. Example: Entering 60 will automatically logout Users who have been idle/inactive for 60 continuous minutes. Only enter numbers and not any other characters. If you accidently enter a blank value for the Idle Session Logout Time then ISL will be disabled automatically.', 'bulletproof-security').'<br><br><strong>'.__('Idle Session Logout Page URL:', 'bulletproof-security').'</strong><br>'.__('When an idle/inactive User is logged out of your site they are redirected to the BPS Idle Session Logout Page URL by default. You can choose to redirect logged out users to any URL that you want to redirect them to by entering the URL in this text box. Example: If you enter the URL path to your WP Login page then user\'s will be redirected to your WP Login page instead of the default BPS Idle Session Logout Page.', 'bulletproof-security').'<br><br><strong>'.__('Idle Session Logout Page Login URL:', 'bulletproof-security').'</strong><br>'.__('This option displays a clickable Login URL/link to your WP Login page. If your Login page URL is different than the default URL that you see displayed in the Idle Session Logout Page Login URL text box then change the URL to the URL for your site\'s Login page. You can choose not to display a Login URL/link by entering "No" (without quotes) if you do not want a Login URL/link displayed.', 'bulletproof-security').'<br><br><strong>'.__('Idle Session Logout Exclude URLs|URIs:', 'bulletproof-security').'</strong><br>'.__('This option allows you to exclude any pages or posts that you do not want ISL to check/monitor. Important: The URI path is everything after the root portion or your domain URL. Example: If the page/post you want to exclude is here: www.example.com/some-post/ then the URI Exclusion that you would use/enter is: /some-post/. If the page/post you want to exclude is here: www.example.com/category/some-post/ then the URI Exclusion that you would use/enter is: /category/some-post/.', 'bulletproof-security').'<br><br><strong>'.__('Idle Session Logout Page Custom Message:', 'bulletproof-security').'</strong><br>'.__('You can either use the default BPS ISL message/text by leaving the textarea box blank or you can enter your own custom ISL message/text in this textarea box that you want displayed to logged out users. Your custom message will be displayed on the default BPS ISL Logout page unless you choose to redirect users to a different URL/link using the Idle Session Logout Page URL option setting.', 'bulletproof-security').'<br><br><strong>'.__('Idle Session Logout Page Custom CSS Style:', 'bulletproof-security').'</strong><br>'.__('You can either use the default BPS CSS Style code or enter your own custom CSS Style customizations.', 'bulletproof-security').'<br><br><strong>'.__('User Account Exceptions:', 'bulletproof-security').'</strong><br>'.__('To create exceptions for User Account names enter User Account names (case-insensitive) separated by a comma and a space: johnDoe, janeDoe. ISL will be turned Off/disabled for any User Account names that you add in this text box. User Account Exceptions override the User Roles option setting. Example: If johnDoe is an Administrator and you have enabled ISL for the Administrator User Role and you have added johnDoe in the User Account Exceptions text box then the johnDoe User Account Exception will override the Administrator User Role option setting and ISL will still be disabled for the johnDoe User Account. It is recommended that you add your User Account name, but if you also want to be automatically logged out when your User Account is idle/inactive then do not add your User Account name.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable Idle Session Logouts For These User Roles:', 'bulletproof-security').'</strong><br>'.__('Checking a User Role checkbox will enable ISL for all Users with that User Role (See User Account Exceptions). Unchecking a User Role checkbox will disable ISL for all Users with that User Role. Example: If you only check the Subscriber checkbox then ISL will only be enabled for Users that are Subscribers. If your website is using/has Custom User Roles, your Custom User Roles will be displayed in a scrollable box below the standard WP User Roles: Administrator, Editor, Author, Contributor, Subscriber.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable Idle Session Logouts For TinyMCE Editors:', 'bulletproof-security').'</strong><br>'.__('Please read all of the TinyMCE Editor Important Notes below. Checking the Enable|Disable ISL For TinyMCE Editor checkbox will disable ISL for any/all pages that have a TinyMCE Editor on them.', 'bulletproof-security').'<br><br><strong>'.__('TinyMCE Editor Important Notes:', 'bulletproof-security').'</strong><br><br><strong>'.__('ISL and TinyMCE javascript Event Listeners:', 'bulletproof-security').'</strong><br>'.__('ISL uses javascript Event Listeners to monitor User activity for these ISL events: keyboard key is pressed, mouse button is pressed, mouse is moved, mouse wheel is rolled up or down, finger is placed on the touch surface/screen and finger already placed on the screen is moved across the screen. The TinyMCE Editor also uses javascript Event Listeners in the Visual Editor window. ISL can monitor User activity in the Text tab Editor window and the Editor Toolbar buttons or menus for any of the ISL events listed above, but cannot monitor any User activity in the TinyMCE Visual tab Editor window.', 'bulletproof-security').'<br><br><strong>'.__('TinyMCE Editor on WordPress Post, Page and Comments pages:', 'bulletproof-security').'</strong><br>'.__('This example is using an Idle Session Logout Time of 60 minutes. If the User is typing content/text for 60 continuous minutes in the WordPress Post, Page or Comments TinyMCE Visual Editor window and has not clicked or moved their mouse outside of the TinyMCE Visual Editor window for 60 continuous minutes and the Enable|Disable ISL For TinyMCE Editor checkbox option is not checked to disable ISL for TinyMCE Editors, then the User will see the native WP Confirm Navigation alert popup window with buttons to either Leave this Page or Stay on this Page. Clicking the Stay on this Page button resets the ISL timer again to 60 minutes and the User will not lose any of their content/text.', 'bulletproof-security').'<br><br><strong>'.__('TinyMCE Editor Instances used in other plugins and themes:', 'bulletproof-security').'</strong><br>'.__('If another plugin or theme is using instances of the TinyMCE Editor, like BPS Maintenance Mode MMode Editor TinyMCE Editor instance for example, then if all of the same conditions stated above for the WordPress Post, Page and Comments pages TinyMCE Visual Editor are the same then instead of seeing the native WP Confirm Navigation alert popup window, the User will be logged out automatically and the User\'s content/text will not be saved. If you are using TinyMCE Editor Instances in another plugin or theme that Users can use to add/edit content/text and you do not want to risk a User being logged out and losing any of their content/text then check the Enable|Disable ISL For TinyMCE Editor checkbox to disable ISL on any pages that contain a TinyMCE Editor Instance.', 'bulletproof-security').'<br><br><strong>'.__('Auth Cookie Expiration (ACE) General Info:', 'bulletproof-security').'</strong><br>'.__('The WordPress Authentication Cookie Expiration (ACE) time can be considered a "hard" setting vs ISL being a "soft" setting. If you set the Cookie Expiration to 60 minutes then 60 consecutive minutes after a User has logged in, that user will be logged out automatically whether that User is idle/inactive or not. The WordPress Authentication Cookie Expiration (ACE) time is set when a User logs in. The default WordPress Authentication Cookie Expiration time is 2880 Minutes/2 Days and 20160 Minutes/14 Days if a User checks the Remember Me checkbox when they login. The WordPress Authentication Cookie Expiration time is set/reset each time a User logs in. So if a User logs out and then logs back into the site then the Cookie Expiration time for that User is set again to whatever Auth Cookie Expiration Time that you choose or the WordPress default Cookie Expiration time if you do not use or turn On ACE.', 'bulletproof-security').'<br><br><strong>'.__('Turn On|Turn Off:', 'bulletproof-security').'</strong><br>'.__('ACE is Turned Off by default. Select ACE On to turn ACE On. Select ACE Off to turn ACE Off.', 'bulletproof-security').'<br><br><strong>'.__('Auth Cookie Expiration Time in Minutes:', 'bulletproof-security').'</strong><br>'.__('Enter the time in minutes for when a User should be logged out of your site. Example: Entering 720 will automatically logout Users who have been logged in for 720 consecutive minutes/12 hours. Only enter numbers and not any other characters. If you accidently enter a blank value for the for Auth Cookie Expiration Time or Remember Me Auth Cookie Expiration Time then ACE will use the default WordPress Authentication Cookie Expiration time.', 'bulletproof-security').'<br><br><strong>'.__('Remember Me Auth Cookie Expiration Time in Minutes:', 'bulletproof-security').'</strong><br>'.__('Enter the time in minutes for when a User should be logged out of your site when the User has checked the Remember Me checkbox on the WordPress Login page. Example: Entering 720 will automatically logout Users who have been logged in for 720 consecutive minutes/12 hours. Only enter numbers and not any other characters. If you accidently enter a blank value for the for Auth Cookie Expiration Time or Remember Me Auth Cookie Expiration Time then ACE will use the default WordPress Authentication Cookie Expiration time.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable Remember Me Checkbox:', 'bulletproof-security').'</strong><br>'.__('Checking the Disable & do not display the Remember Me checkbox option will disable and not display the Remember Me checkbox for everyone including you. If you want to set and control the WordPress Remember Me setting then use the Remember Me Auth Cookie Expiration Time in Minutes option setting instead and choose an amount of time you would like to use for the Cookie expiration time.', 'bulletproof-security').'<br><br><strong>'.__('User Account Exceptions:', 'bulletproof-security').'</strong><br>'.__('To create exceptions for User Account names enter User Account names (case-insensitive) separated by a comma and a space: johnDoe, janeDoe. Auth Cookie Expiration Time settings will not be applied to any User Account names that you add in this text box and these User Accounts will instead use the default WordPress Authentication Cookie Expiration time. User Account Exceptions override the User Roles option setting. Example: If johnDoe is an Administrator and you have enabled ACE for the Administrator User Role and you have added johnDoe in the User Account Exceptions text box then the johnDoe User Account Exception will override the Administrator User Role option setting and the johnDoe User Account will use the default WordPress Authentication Cookie Expiration time. It is recommended that you add your User Account name, but if you also want to be automatically logged out for the Auth Cookie Expiration time that you choose then do not add your User Account name.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable Auth Cookie Expiration Time For These User Roles:', 'bulletproof-security').'</strong><br>'.__('Checking a User Role checkbox will apply the Auth Cookie Expiration Time that you choose for all Users with that User Role (See User Account Exceptions). Unchecking a User Role checkbox will apply the default WordPress Authentication Cookie Expiration time for all Users with that User Role. Example: If you only check the Subscriber checkbox then ACE will only apply the Auth Cookie Expiration Time setting that you choose for Users that are Subscribers. If your website is using/has Custom User Roles, your Custom User Roles will be displayed in a scrollable box below the standard WP User Roles: Administrator, Editor, Author, Contributor, Subscriber.', 'bulletproof-security').'<br><br>';
16
  }
17
 
18
  /** JTC-Lite stripped down version of the BEAST - BPS Pro JTC Anti-Spam|Anti-Hacker **/
19
+ $bps_modal_content2 = '<strong>'.__('If you forget what the CAPTCHA is and cannot login to your website use FTP or your web host control panel file manager and rename the /bulletproof-security/ plugin folder name to /_bulletproof-security/. Login to your website, go to the BPS JTC-Lite page and correct the CAPTCHA issue/problem. Rename the /_bulletproof-security/ plugin folder name back to /bulletproof-security/.', 'bulletproof-security').'</strong><br><br><strong>'.__('JTC-Lite Manual Setup Steps', 'bulletproof-security').'</strong><br>'.__('1. Enter a user friendly CAPTCHA in the JTC CAPTCHA text box.', 'bulletproof-security').'<br>'.__('2. Copy and paste the CAPTCHA you entered in the JTC CAPTCHA text box into the JTC ToolTip text box.', 'bulletproof-security').'<br>'.__('3. Either keep this default text "Hover or click the text box below" that will be displayed on all your forms or edit this text and add the message you want to add.', 'bulletproof-security').'<br>'.__('4. Check the Login Form checkbox and click the Save Options button.', 'bulletproof-security').'<br><br><strong>'.__('General Info about JTC-Lite', 'bulletproof-security').'</strong><br>'.__('JTC-Lite protects the WordPress Login form against automated SpamBot and HackerBot Brute Force Login attacks. Prevents User Accounts from being locked repeatedly by constant Brute Force Login attacks on your Login page. If you would like to protect all of your WordPress forms get the full version of JTC - BPS Pro JTC Anti-Spam|Anti-Hacker.', 'bulletproof-security').'<br><br><strong>'.__('JTC CAPTCHA: ', 'bulletproof-security').'</strong><br>'.__('This is the CAPTCHA that users will enter to Login to your website. You can use any numbers or characters and spaces in the CAPTCHA. You can even use HTML code characters except for these HTML code characters: < > \' " &. You can use a phrase for the CAPTCHA or it can be a single word or you can use your own original combination of words, numbers and HTML characters.', 'bulletproof-security').'<br><br><strong>'.__('Note: ', 'bulletproof-security').'</strong>'.__('It is recommended that you make your CAPTCHA user friendly, simple, clear and easy to understand for your users.', 'bulletproof-security').'<br><br><strong>'.__('JTC ToolTip: ', 'bulletproof-security').'</strong><br>'.__('This is the jQuery ToolTip message that is displayed to users when they hover or click on the CAPTCHA text box. This is where you will tell your users what they need to enter for the CAPTCHA. It can be a phrase, complete this sentence, a Hint or simply just Type/Enter: xxxxx or you can get as creative as you want to get with your jQuery ToolTip. Randomness is what makes a CAPTCHA very effective. JTC is designed with CAPTCHA randomness capability as one of its primary features.', 'bulletproof-security').'<br><br><strong>'.__('JTC Title|Text: ', 'bulletproof-security').'</strong><br>'.__('This is the text that is displayed to users above the CAPTCHA text box/Form Field.', 'bulletproof-security').$networkMUJTCText.'<br><br><strong>'.__('Enable JTC for WooCommerce (BPS Pro Only):', 'bulletproof-security').'</strong><br>'.__('Check this checkbox if you have the WooCommerce plugin installed if you would like to use BPS JTC on the WooCommerce custom login page. BPS JTC will still continue to work normally on the standard WordPress Forms: Login, Register, Lost Password, Comment, BuddyPress Register and BuddyPress Sidebar Login Forms when you check this checkbox. This checkbox option setting is not for turning JTC On or Off if you are using WooCommerce. Use the JTC Enable|Disable JTC For These Forms option checkboxes to enable or disable JTC on each of your Forms.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable JTC For These Forms (Only the Login Form CAPTCHA is available in BPS Free): ', 'bulletproof-security').'</strong><br>'.__('Checking a Form checkbox will display a CAPTCHA on that Form to all users. Unchecking a Form checkbox will remove the CAPTCHA on that Form for all users. The Comment Form is a special case and the CAPTCHA can be displayed based on the User Roles that you choose. See the Comment Form help section below.', 'bulletproof-security').'<br><br><strong>'.__('Comment Form: (only applies if Comment Form CAPTCHA is enabled/checked) ', 'bulletproof-security').'<br>'.__('Enable|Disable JTC For These Registered/Logged In User Roles (BPS Pro Only:', 'bulletproof-security').'</strong><br>'.__('Users must be logged into your website for the Comment Form User Roles to work. If you do not require that users are registered and logged in to post comments on your website then these JTC options will not have any effect. These options are only for registered and logged in users and only for your Comment Form if you are using this WordPress Discussion setting: Users must be registered and logged in to comment. If you do not want to require that users are registered and logged in to comment then the JTC Comment Form CAPTCHA will still work as long as you have this WordPress Discussion setting checked: Comment author must fill out name and email.', 'bulletproof-security').'<br><br>'.__('Checking a User Role checkbox will display a CAPTCHA to all users with that User Role on your website\'s Comment Form. Unchecking a User Role checkbox will remove the CAPTCHA from displaying to users with that User Role on your website\'s Comment Form. If your website is using/has Custom User Roles, your Custom User Roles will be displayed in a scrollable box below the standard WP User Roles: Administrator, Editor, Author, Contributor, Subscriber.', 'bulletproof-security').'<br><br><strong>'.__('Comment Form CAPTCHA Error message (BPS Pro Only):', 'bulletproof-security').'</strong><br>'.__('The Default JTC Comment Form CAPTCHA error message is: <strong>ERROR</strong>: Incorrect JTC CAPTCHA Entered. Click your Browser\'s back button and re-enter the JTC CAPTCHA. You can change or add to the default error message. This error message only applies to the Comment Form CAPTCHA error message and does not affect or change any of the other Form CAPTCHA error messages.', 'bulletproof-security').'<br><br><strong>'.__('Comment Form: CSS Styling (BPS Pro Only)', 'bulletproof-security').'</strong><br>'.__('You can position the JTC Title|Text Form label and the JTC CAPTCHA Form Input text box by editing the CSS in these text boxes. By default the position of the JTC Title|Text label and the JTC CAPTCHA Form Input text box is below your Comment Form submit button. For CSS code styling examples.', 'bulletproof-security').'<br><br><strong>'.__('Comment Form Label (BPS Pro Only):', 'bulletproof-security').'</strong><br>'.__('This is the JTC Title|Text label above the Form Input text box.', 'bulletproof-security').'<br><strong>'.__('Comment Form Input Text Box (BPS Pro Only):', 'bulletproof-security').'</strong><br>'.__('This is the JTC CAPTCHA Form Input text box.', 'bulletproof-security').'<br><br><strong>'.__('Additional Brute Force CAPTCHA Option: ', 'bulletproof-security').'</strong><br>'.__('If you do not allow anyone else to log into your website then here is an example of how JTC could be used as an additional Brute Force Login Protection feature.', 'bulletproof-security').'<br><br>'.__('Example: You create a JTC CAPTCHA: My Example CAPTCHA, you either leave the JTC ToolTip: text box blank or you create a Hint for yourself - JTC ToolTip: My Example Hint. If your JTC ToolTip: text box is blank then the CAPTCHA will not be displayed - only you will know what the CAPTCHA is. If you create a personal Hint for yourself then only you will know what the answer to the Hint is.', 'bulletproof-security').'</strong>';
20
 
21
  /** Idle Session Logout|Auth Cookie Expiration **/
22
  $bps_modal_content3 = '<strong>'.__('Idle Session Logout (ISL) General Info:', 'bulletproof-security').'</strong><br>'.__('Idle Session Logout (ISL) can be considered a "soft" setting vs ACE being a "hard" setting. ISL uses javascript Event Listeners to monitor Users activity for these ISL events: keyboard key is pressed, mouse button is pressed, mouse is moved, mouse wheel is rolled up or down, finger is placed on the touch surface/screen and finger already placed on the screen is moved across the screen.', 'bulletproof-security').'<br><br>'.__('If you set the Idle Session Logout Time to 60 minutes and the User is idle/inactive for 10 minutes and becomes active again then the Idle Session Logout Time starts all over again/is reset to 60 minutes. If a User is idle/inactive for 60 continuous minutes then that User will be automatically logged out of the site and redirected to the BPS Idle Session Logout Page.', 'bulletproof-security').'<br><br>'.__('When an idle/inactive User is logged out of the site they are redirected to the BPS Idle Session Logout Page URL if their Browser is still open. If the User\'s Browser is still open and the User is on another Browser tab window then the Browser tab window where they are logged into your site will be redirected to the BPS Idle Session Logout Page URL. If the User has closed their Browser without logging out of your site then that User will not be logged out of your site. You can use ACE to log User\'s out of your site whether or not they have closed their Browser. Idle Session Logouts are logged in the BPS Security Log file.', 'bulletproof-security').'<br><br><strong><font color="blue">'.__('After making any option setting changes click the Save Options button to save your new option settings. To reset ISL option settings back to the default ISL option settings, delete any custom values/entries you have entered in any text/textarea boxes and click the Save Options button.', 'bulletproof-security').'</font></strong><br><br><strong>'.__('Turn On|Turn Off:', 'bulletproof-security').'</strong><br>'.__('ISL is Turned Off by default. Select ISL On to turn ISL On. Select ISL Off to turn ISL Off.', 'bulletproof-security').'<br><br><strong>'.__('Idle Session Logout Time in Minutes:', 'bulletproof-security').'</strong><br>'.__('Enter the time in minutes for when an idle/inactive User should be logged out of your site. Example: Entering 60 will automatically logout Users who have been idle/inactive for 60 continuous minutes. Only enter numbers and not any other characters. If you accidently enter a blank value for the Idle Session Logout Time then ISL will be disabled automatically.', 'bulletproof-security').'<br><br><strong>'.__('Idle Session Logout Page URL:', 'bulletproof-security').'</strong><br>'.__('When an idle/inactive User is logged out of your site they are redirected to the BPS Idle Session Logout Page URL by default. You can choose to redirect logged out users to any URL that you want to redirect them to by entering the URL in this text box. Example: If you enter the URL path to your WP Login page then user\'s will be redirected to your WP Login page instead of the default BPS Idle Session Logout Page.', 'bulletproof-security').'<br><br><strong>'.__('Idle Session Logout Page Login URL:', 'bulletproof-security').'</strong><br>'.__('This option displays a clickable Login URL/link to your WP Login page. If your Login page URL is different than the default URL that you see displayed in the Idle Session Logout Page Login URL text box then change the URL to the URL for your site\'s Login page. You can choose not to display a Login URL/link by entering "No" (without quotes) if you do not want a Login URL/link displayed.', 'bulletproof-security').'<br><br><strong>'.__('Idle Session Logout Exclude URLs|URIs:', 'bulletproof-security').'</strong><br>'.__('This option allows you to exclude any pages or posts that you do not want ISL to check/monitor. Important: The URI path is everything after the root portion or your domain URL. Example: If the page/post you want to exclude is here: www.example.com/some-post/ then the URI Exclusion that you would use/enter is: /some-post/. If the page/post you want to exclude is here: www.example.com/category/some-post/ then the URI Exclusion that you would use/enter is: /category/some-post/.', 'bulletproof-security').'<br><br><strong>'.__('Idle Session Logout Page Custom Message:', 'bulletproof-security').'</strong><br>'.__('You can either use the default BPS ISL message/text by leaving the textarea box blank or you can enter your own custom ISL message/text in this textarea box that you want displayed to logged out users. Your custom message will be displayed on the default BPS ISL Logout page unless you choose to redirect users to a different URL/link using the Idle Session Logout Page URL option setting.', 'bulletproof-security').'<br><br><strong>'.__('Idle Session Logout Page Custom CSS Style:', 'bulletproof-security').'</strong><br>'.__('You can either use the default BPS CSS Style code or enter your own custom CSS Style customizations.', 'bulletproof-security').'<br><br><strong>'.__('User Account Exceptions:', 'bulletproof-security').'</strong><br>'.__('To create exceptions for User Account names enter User Account names (case-insensitive) separated by a comma and a space: johnDoe, janeDoe. ISL will be turned Off/disabled for any User Account names that you add in this text box. User Account Exceptions override the User Roles option setting. Example: If johnDoe is an Administrator and you have enabled ISL for the Administrator User Role and you have added johnDoe in the User Account Exceptions text box then the johnDoe User Account Exception will override the Administrator User Role option setting and ISL will still be disabled for the johnDoe User Account. It is recommended that you add your User Account name, but if you also want to be automatically logged out when your User Account is idle/inactive then do not add your User Account name.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable Idle Session Logouts For These User Roles:', 'bulletproof-security').'</strong><br>'.__('Checking a User Role checkbox will enable ISL for all Users with that User Role (See User Account Exceptions). Unchecking a User Role checkbox will disable ISL for all Users with that User Role. Example: If you only check the Subscriber checkbox then ISL will only be enabled for Users that are Subscribers. If your website is using/has Custom User Roles, your Custom User Roles will be displayed in a scrollable box below the standard WP User Roles: Administrator, Editor, Author, Contributor, Subscriber.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable Idle Session Logouts For TinyMCE Editors:', 'bulletproof-security').'</strong><br>'.__('Please read all of the TinyMCE Editor Important Notes below. Checking the Enable|Disable ISL For TinyMCE Editor checkbox will disable ISL for any/all pages that have a TinyMCE Editor on them.', 'bulletproof-security').'<br><br><strong>'.__('TinyMCE Editor Important Notes:', 'bulletproof-security').'</strong><br><br><strong>'.__('ISL and TinyMCE javascript Event Listeners:', 'bulletproof-security').'</strong><br>'.__('ISL uses javascript Event Listeners to monitor User activity for these ISL events: keyboard key is pressed, mouse button is pressed, mouse is moved, mouse wheel is rolled up or down, finger is placed on the touch surface/screen and finger already placed on the screen is moved across the screen. The TinyMCE Editor also uses javascript Event Listeners in the Visual Editor window. ISL can monitor User activity in the Text tab Editor window and the Editor Toolbar buttons or menus for any of the ISL events listed above, but cannot monitor any User activity in the TinyMCE Visual tab Editor window.', 'bulletproof-security').'<br><br><strong>'.__('TinyMCE Editor on WordPress Post, Page and Comments pages:', 'bulletproof-security').'</strong><br>'.__('This example is using an Idle Session Logout Time of 60 minutes. If the User is typing content/text for 60 continuous minutes in the WordPress Post, Page or Comments TinyMCE Visual Editor window and has not clicked or moved their mouse outside of the TinyMCE Visual Editor window for 60 continuous minutes and the Enable|Disable ISL For TinyMCE Editor checkbox option is not checked to disable ISL for TinyMCE Editors, then the User will see the native WP Confirm Navigation alert popup window with buttons to either Leave this Page or Stay on this Page. Clicking the Stay on this Page button resets the ISL timer again to 60 minutes and the User will not lose any of their content/text.', 'bulletproof-security').'<br><br><strong>'.__('TinyMCE Editor Instances used in other plugins and themes:', 'bulletproof-security').'</strong><br>'.__('If another plugin or theme is using instances of the TinyMCE Editor, like BPS Maintenance Mode MMode Editor TinyMCE Editor instance for example, then if all of the same conditions stated above for the WordPress Post, Page and Comments pages TinyMCE Visual Editor are the same then instead of seeing the native WP Confirm Navigation alert popup window, the User will be logged out automatically and the User\'s content/text will not be saved. If you are using TinyMCE Editor Instances in another plugin or theme that Users can use to add/edit content/text and you do not want to risk a User being logged out and losing any of their content/text then check the Enable|Disable ISL For TinyMCE Editor checkbox to disable ISL on any pages that contain a TinyMCE Editor Instance.', 'bulletproof-security').'<br><br><strong>'.__('Auth Cookie Expiration (ACE) General Info:', 'bulletproof-security').'</strong><br>'.__('The WordPress Authentication Cookie Expiration (ACE) time can be considered a "hard" setting vs ISL being a "soft" setting. If you set the Cookie Expiration to 60 minutes then 60 consecutive minutes after a User has logged in, that user will be logged out automatically whether that User is idle/inactive or not. The WordPress Authentication Cookie Expiration (ACE) time is set when a User logs in. The default WordPress Authentication Cookie Expiration time is 2880 Minutes/2 Days and 20160 Minutes/14 Days if a User checks the Remember Me checkbox when they login. The WordPress Authentication Cookie Expiration time is set/reset each time a User logs in. So if a User logs out and then logs back into the site then the Cookie Expiration time for that User is set again to whatever Auth Cookie Expiration Time that you choose or the WordPress default Cookie Expiration time if you do not use or turn On ACE.', 'bulletproof-security').'<br><br><strong>'.__('Turn On|Turn Off:', 'bulletproof-security').'</strong><br>'.__('ACE is Turned Off by default. Select ACE On to turn ACE On. Select ACE Off to turn ACE Off.', 'bulletproof-security').'<br><br><strong>'.__('Auth Cookie Expiration Time in Minutes:', 'bulletproof-security').'</strong><br>'.__('Enter the time in minutes for when a User should be logged out of your site. Example: Entering 720 will automatically logout Users who have been logged in for 720 consecutive minutes/12 hours. Only enter numbers and not any other characters. If you accidently enter a blank value for the for Auth Cookie Expiration Time or Remember Me Auth Cookie Expiration Time then ACE will use the default WordPress Authentication Cookie Expiration time.', 'bulletproof-security').'<br><br><strong>'.__('Remember Me Auth Cookie Expiration Time in Minutes:', 'bulletproof-security').'</strong><br>'.__('Enter the time in minutes for when a User should be logged out of your site when the User has checked the Remember Me checkbox on the WordPress Login page. Example: Entering 720 will automatically logout Users who have been logged in for 720 consecutive minutes/12 hours. Only enter numbers and not any other characters. If you accidently enter a blank value for the for Auth Cookie Expiration Time or Remember Me Auth Cookie Expiration Time then ACE will use the default WordPress Authentication Cookie Expiration time.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable Remember Me Checkbox:', 'bulletproof-security').'</strong><br>'.__('Checking the Disable & do not display the Remember Me checkbox option will disable and not display the Remember Me checkbox for everyone including you. If you want to set and control the WordPress Remember Me setting then use the Remember Me Auth Cookie Expiration Time in Minutes option setting instead and choose an amount of time you would like to use for the Cookie expiration time.', 'bulletproof-security').'<br><br><strong>'.__('User Account Exceptions:', 'bulletproof-security').'</strong><br>'.__('To create exceptions for User Account names enter User Account names (case-insensitive) separated by a comma and a space: johnDoe, janeDoe. Auth Cookie Expiration Time settings will not be applied to any User Account names that you add in this text box and these User Accounts will instead use the default WordPress Authentication Cookie Expiration time. User Account Exceptions override the User Roles option setting. Example: If johnDoe is an Administrator and you have enabled ACE for the Administrator User Role and you have added johnDoe in the User Account Exceptions text box then the johnDoe User Account Exception will override the Administrator User Role option setting and the johnDoe User Account will use the default WordPress Authentication Cookie Expiration time. It is recommended that you add your User Account name, but if you also want to be automatically logged out for the Auth Cookie Expiration time that you choose then do not add your User Account name.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable Auth Cookie Expiration Time For These User Roles:', 'bulletproof-security').'</strong><br>'.__('Checking a User Role checkbox will apply the Auth Cookie Expiration Time that you choose for all Users with that User Role (See User Account Exceptions). Unchecking a User Role checkbox will apply the default WordPress Authentication Cookie Expiration time for all Users with that User Role. Example: If you only check the Subscriber checkbox then ACE will only apply the Auth Cookie Expiration Time setting that you choose for Users that are Subscribers. If your website is using/has Custom User Roles, your Custom User Roles will be displayed in a scrollable box below the standard WP User Roles: Administrator, Editor, Author, Contributor, Subscriber.', 'bulletproof-security').'<br><br>';
admin/maintenance/maintenance.php CHANGED
@@ -693,7 +693,7 @@ if ( isset( $_POST['maintenance-mode-preview-submit'] ) && current_user_can('man
693
  <form name="MaintenanceModePreview" method="post" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/maintenance/maintenance.php' ); ?>" target="" onSubmit="window.open('<?php echo plugins_url('/bulletproof-security/admin/htaccess/bps-maintenance-'.$subsite_remove_slashes.'.php'); ?>','','scrollbars=yes,menubar=yes,width=800,height=600,resizable=yes,status=yes,toolbar=yes')">
694
  <?php wp_nonce_field('bulletproof_security_maintenance_preview'); ?>
695
  <p class="submit" style="float:left;margin:15px 10px 0px 0px;">
696
- <input type="submit" name="maintenance-mode-preview-submit" class="button bps-button" style="width:72px" value="<?php esc_attr_e('Preview', 'bulletproof-security') ?>" />
697
  </p>
698
  </form>
699
 
@@ -702,7 +702,7 @@ if ( isset( $_POST['maintenance-mode-preview-submit'] ) && current_user_can('man
702
  <form name="MaintenanceModePreview" method="post" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/maintenance/maintenance.php' ); ?>" target="" onSubmit="window.open('<?php echo plugins_url('/bulletproof-security/admin/htaccess/bps-maintenance.php'); ?>','','scrollbars=yes,menubar=yes,width=800,height=600,resizable=yes,status=yes,toolbar=yes')">
703
  <?php wp_nonce_field('bulletproof_security_maintenance_preview'); ?>
704
  <p class="submit" style="float:left;margin:15px 10px 0px 0px;">
705
- <input type="submit" name="maintenance-mode-preview-submit" class="button bps-button" style="width:72px" value="<?php esc_attr_e('Preview', 'bulletproof-security') ?>" />
706
  </p>
707
  </form>
708
 
@@ -711,14 +711,14 @@ if ( isset( $_POST['maintenance-mode-preview-submit'] ) && current_user_can('man
711
  <form name="bpsMaintenanceModeOn" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/maintenance/maintenance.php' ); ?>" method="post">
712
  <?php wp_nonce_field('bulletproof_security_mmode_on'); ?>
713
  <p class="submit" style="float:left;margin:15px 10px 0px 0px;">
714
- <input type="submit" name="Submit-maintenance-mode-on" class="button bps-button" style="width:72px" value="<?php esc_attr_e('Turn On', 'bulletproof-security') ?>" />
715
  </p>
716
  </form>
717
 
718
  <form name="bpsMaintenanceModeOff" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/maintenance/maintenance.php' ); ?>" method="post">
719
  <?php wp_nonce_field('bulletproof_security_mmode_off'); ?>
720
  <p class="submit" style="float:left;margin:15px 10px 0px 0px;">
721
- <input type="submit" name="Submit-maintenance-mode-off" class="button bps-button" style="width:72px" value="<?php esc_attr_e('Turn Off', 'bulletproof-security') ?>" />
722
  </p>
723
  </form>
724
 
693
  <form name="MaintenanceModePreview" method="post" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/maintenance/maintenance.php' ); ?>" target="" onSubmit="window.open('<?php echo plugins_url('/bulletproof-security/admin/htaccess/bps-maintenance-'.$subsite_remove_slashes.'.php'); ?>','','scrollbars=yes,menubar=yes,width=800,height=600,resizable=yes,status=yes,toolbar=yes')">
694
  <?php wp_nonce_field('bulletproof_security_maintenance_preview'); ?>
695
  <p class="submit" style="float:left;margin:15px 10px 0px 0px;">
696
+ <input type="submit" name="maintenance-mode-preview-submit" class="button bps-button" style="width:72px;height:auto;white-space:normal" value="<?php esc_attr_e('Preview', 'bulletproof-security') ?>" />
697
  </p>
698
  </form>
699
 
702
  <form name="MaintenanceModePreview" method="post" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/maintenance/maintenance.php' ); ?>" target="" onSubmit="window.open('<?php echo plugins_url('/bulletproof-security/admin/htaccess/bps-maintenance.php'); ?>','','scrollbars=yes,menubar=yes,width=800,height=600,resizable=yes,status=yes,toolbar=yes')">
703
  <?php wp_nonce_field('bulletproof_security_maintenance_preview'); ?>
704
  <p class="submit" style="float:left;margin:15px 10px 0px 0px;">
705
+ <input type="submit" name="maintenance-mode-preview-submit" class="button bps-button" style="width:72px;height:auto;white-space:normal" value="<?php esc_attr_e('Preview', 'bulletproof-security') ?>" />
706
  </p>
707
  </form>
708
 
711
  <form name="bpsMaintenanceModeOn" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/maintenance/maintenance.php' ); ?>" method="post">
712
  <?php wp_nonce_field('bulletproof_security_mmode_on'); ?>
713
  <p class="submit" style="float:left;margin:15px 10px 0px 0px;">
714
+ <input type="submit" name="Submit-maintenance-mode-on" class="button bps-button" style="width:72px;height:auto;white-space:normal" value="<?php esc_attr_e('Turn On', 'bulletproof-security') ?>" />
715
  </p>
716
  </form>
717
 
718
  <form name="bpsMaintenanceModeOff" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/maintenance/maintenance.php' ); ?>" method="post">
719
  <?php wp_nonce_field('bulletproof_security_mmode_off'); ?>
720
  <p class="submit" style="float:left;margin:15px 10px 0px 0px;">
721
+ <input type="submit" name="Submit-maintenance-mode-off" class="button bps-button" style="width:72px;height:auto;white-space:normal" value="<?php esc_attr_e('Turn Off', 'bulletproof-security') ?>" />
722
  </p>
723
  </form>
724
 
admin/mscan/mscan.php CHANGED
@@ -1029,17 +1029,17 @@ bpsPro_save_mscan_options();
1029
 
1030
  echo '<form name="MScanTimeEstimate" action="'.admin_url( 'admin.php?page=bulletproof-security/admin/mscan/mscan.php' ).'" method="post">';
1031
  wp_nonce_field('bulletproof_security_mscan_time_estimate');
1032
- echo "<input type=\"submit\" id=\"bps-mscan-time-estimate-button\" name=\"Submit-MScan-Time-Estimate\" value=\"".esc_attr__('Scan Time Estimate Tool', 'bulletproof-security')."\" class=\"button bps-button\" style=\"width:175px\" onclick=\"return confirm('".__('IMPORTANT: You can stop the scan time estimate if it hangs or is taking too long by clicking the Stop Scan button.\n\n-------------------------------------------------------------\n\nThis tool allows you to check the estimated total scan time of a scan based on your MScan option settings without actually performing/running a scan. Note: This tool does not affect or change any previous scan results except for the Total Scan Time, which will be changed to the estimated scan time.\n\n-------------------------------------------------------------\n\nExample Usage: You can check or uncheck Hosting Account Root Folders checkboxes and change any other MScan option settings, save your MScan option settings and then run the Scan Time Estimate Tool to get the total estimated time that the actual scan will take. For additional help information click the MScan Read Me help button.\n\n-------------------------------------------------------------\n\nClick OK to get a scan time estimate or click Cancel', 'bulletproof-security')."')\" />";
1033
  echo '</form><br>';
1034
 
1035
  echo '<form name="MScanDeleteStatus" action="'.admin_url( 'admin.php?page=bulletproof-security/admin/mscan/mscan.php' ).'" method="post">';
1036
  wp_nonce_field('bulletproof_security_mscan_delete_status');
1037
- echo "<input type=\"submit\" name=\"Submit-MScan-Delete-Status\" value=\"".esc_attr__('Delete Scan Status Tool', 'bulletproof-security')."\" class=\"button bps-button\" style=\"width:175px\" onclick=\"return confirm('".__('This tool allows you to delete all of the MScan Status option values.\n\n-------------------------------------------------------------\n\nThe Scan Completed timestamp, Total Scan Time, Total Files Scanned, Skipped Files, Suspicious Files and Suspicious DB Entries status values will be deleted and will either display blank or 0. For additional help information click the MScan Read Me help button.\n\n-------------------------------------------------------------\n\nClick OK to delete scan status option values or click Cancel', 'bulletproof-security')."')\" />";
1038
  echo '</form><br>';
1039
 
1040
  echo '<form name="MScanDeleteAllScanData" action="'.admin_url( 'admin.php?page=bulletproof-security/admin/mscan/mscan.php' ).'" method="post">';
1041
  wp_nonce_field('bulletproof_security_mscan_delete_all_scan_data');
1042
- echo "<input type=\"submit\" name=\"Submit-MScan-Delete-All-Scan-Data\" value=\"".esc_attr__('Delete DB Scan Data Tool', 'bulletproof-security')."\" class=\"button bps-button\" style=\"width:175px\" onclick=\"return confirm('".__('Deleting all database scan data is a reset that deletes any/all changes you have made and saved using the View|Ignore|Delete Suspicious Files and View|Ignore Suspicious DB Entries Forms.\n\n-------------------------------------------------------------\n\nClick OK to delete all database Scan Data or click Cancel', 'bulletproof-security')."')\" />";
1043
  echo '</form>';
1044
 
1045
  echo '</div>';
@@ -1775,10 +1775,10 @@ $DBBLogMaster = WP_PLUGIN_DIR . '/bulletproof-security/admin/htaccess/db_backup_
1775
  if ( copy($DBBLogMaster, $DBBLog) ) {
1776
  touch($DBBLog, $time);
1777
 
1778
- echo $bps_topDiv;
1779
- $text = '<font color="green"><strong>'.__('Success! Your DB Backup Log has been deleted and replaced with a new blank DB Backup Log file.', 'bulletproof-security').'</strong></font>';
1780
- echo $text;
1781
- echo $bps_bottomDiv;
1782
  }
1783
  }
1784
  ?>
1029
 
1030
  echo '<form name="MScanTimeEstimate" action="'.admin_url( 'admin.php?page=bulletproof-security/admin/mscan/mscan.php' ).'" method="post">';
1031
  wp_nonce_field('bulletproof_security_mscan_time_estimate');
1032
+ echo "<input type=\"submit\" id=\"bps-mscan-time-estimate-button\" name=\"Submit-MScan-Time-Estimate\" value=\"".esc_attr__('Scan Time Estimate Tool', 'bulletproof-security')."\" class=\"button bps-button\" style=\"width:175px;height:auto;white-space:normal\" onclick=\"return confirm('".__('IMPORTANT: You can stop the scan time estimate if it hangs or is taking too long by clicking the Stop Scan button.\n\n-------------------------------------------------------------\n\nThis tool allows you to check the estimated total scan time of a scan based on your MScan option settings without actually performing/running a scan. Note: This tool does not affect or change any previous scan results except for the Total Scan Time, which will be changed to the estimated scan time.\n\n-------------------------------------------------------------\n\nExample Usage: You can check or uncheck Hosting Account Root Folders checkboxes and change any other MScan option settings, save your MScan option settings and then run the Scan Time Estimate Tool to get the total estimated time that the actual scan will take. For additional help information click the MScan Read Me help button.\n\n-------------------------------------------------------------\n\nClick OK to get a scan time estimate or click Cancel', 'bulletproof-security')."')\" />";
1033
  echo '</form><br>';
1034
 
1035
  echo '<form name="MScanDeleteStatus" action="'.admin_url( 'admin.php?page=bulletproof-security/admin/mscan/mscan.php' ).'" method="post">';
1036
  wp_nonce_field('bulletproof_security_mscan_delete_status');
1037
+ echo "<input type=\"submit\" name=\"Submit-MScan-Delete-Status\" value=\"".esc_attr__('Delete Scan Status Tool', 'bulletproof-security')."\" class=\"button bps-button\" style=\"width:175px;height:auto;white-space:normal\" onclick=\"return confirm('".__('This tool allows you to delete all of the MScan Status option values.\n\n-------------------------------------------------------------\n\nThe Scan Completed timestamp, Total Scan Time, Total Files Scanned, Skipped Files, Suspicious Files and Suspicious DB Entries status values will be deleted and will either display blank or 0. For additional help information click the MScan Read Me help button.\n\n-------------------------------------------------------------\n\nClick OK to delete scan status option values or click Cancel', 'bulletproof-security')."')\" />";
1038
  echo '</form><br>';
1039
 
1040
  echo '<form name="MScanDeleteAllScanData" action="'.admin_url( 'admin.php?page=bulletproof-security/admin/mscan/mscan.php' ).'" method="post">';
1041
  wp_nonce_field('bulletproof_security_mscan_delete_all_scan_data');
1042
+ echo "<input type=\"submit\" name=\"Submit-MScan-Delete-All-Scan-Data\" value=\"".esc_attr__('Delete DB Scan Data Tool', 'bulletproof-security')."\" class=\"button bps-button\" style=\"width:175px;height:auto;white-space:normal\" onclick=\"return confirm('".__('Deleting all database scan data is a reset that deletes any/all changes you have made and saved using the View|Ignore|Delete Suspicious Files and View|Ignore Suspicious DB Entries Forms.\n\n-------------------------------------------------------------\n\nClick OK to delete all database Scan Data or click Cancel', 'bulletproof-security')."')\" />";
1043
  echo '</form>';
1044
 
1045
  echo '</div>';
1775
  if ( copy($DBBLogMaster, $DBBLog) ) {
1776
  touch($DBBLog, $time);
1777
 
1778
+ echo $bps_topDiv;
1779
+ $text = '<font color="green"><strong>'.__('Success! Your MScan Log has been deleted and replaced with a new blank MScan Log file.', 'bulletproof-security').'</strong></font>';
1780
+ echo $text;
1781
+ echo $bps_bottomDiv;
1782
  }
1783
  }
1784
  ?>
admin/security-log/security-log.php CHANGED
@@ -462,7 +462,7 @@ $search = '';
462
  <strong><label for="UA-ignore"><?php _e('Add User Agents|Bots to Ignore|Not Log', 'bulletproof-security'); ?></label></strong><br />
463
  <strong><label for="UA-ignore"><?php _e('Click the Read Me Help button for examples', 'bulletproof-security'); ?></label></strong><br />
464
  <input type="text" name="user-agent-ignore" class="regular-text-320" value="" />
465
- <input type="submit" name="Submit-UserAgent-Ignore" value="<?php esc_attr_e('Add|Ignore', 'bulletproof-security') ?>" class="button bps-button" style="width:104px" onclick="return confirm('<?php $text = __('Clicking OK will Add the User Agent|Bot name you have entered to your DB and the 403.php Security Logging template.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Security logging checks are done by the 403.php Security Logging file and not by DB Queries.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('To remove User Agents|Bots from being ignored/not logged use the Remove|Allow tool.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Click OK to proceed or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
466
  </form>
467
  </div>
468
 
@@ -477,7 +477,7 @@ $search = '';
477
  wp_nonce_field('bulletproof_security_seclog_db_search');
478
  echo '<span style="font-size:13px;"><strong>'.__('Remove User Agents|Bots to Allow|Log', 'bulletproof-security').'</strong></span><br>';
479
  echo '<input type="text" name="userAgentSearchRemove" class="regular-text-320" value="" />';
480
- echo '<input type="submit" name="Submit-SecLog-Search" value="'.esc_attr__('Remove|Allow', 'bulletproof-security').'" class="button bps-button" style="margin-left:3px;width:104px" onclick="return confirm('."'".__('Clicking OK will search your database and display User Agent|Bot DB search results in a Dynamic Radio button Form.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('To search for ALL User Agents|Bots to remove/delete from your database leave the text box blank and click the Remove|Allow button.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Click OK to proceed or click Cancel.', 'bulletproof-security')."'".')" />';
481
  echo '</form><br>';
482
 
483
  ?>
@@ -490,7 +490,7 @@ $search = '';
490
  <div id="SecurityLogTurnOffButton">
491
  <form name="BPSErrorLogOff" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/security-log/security-log.php' ); ?>" method="post">
492
  <?php wp_nonce_field('bps-error-log-off'); ?>
493
- <input type="submit" name="Submit-Error-Log-Off" value="<?php esc_attr_e('Turn Off Logging', 'bulletproof-security') ?>" class="button bps-button" style="width:120px;margin-right:15px" onclick="return confirm('<?php $text = __('Click OK to Turn Off Error Logging or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
494
  </form>
495
  </div>
496
  </td>
@@ -498,7 +498,7 @@ $search = '';
498
  <div id="SecurityLogTurnOnButton">
499
  <form name="BPSErrorLogOn" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/security-log/security-log.php' ); ?>" method="post">
500
  <?php wp_nonce_field('bps-error-log-on'); ?>
501
- <input type="submit" name="Submit-Error-Log-On" value="<?php esc_attr_e('Turn On Logging', 'bulletproof-security') ?>" class="button bps-button" style="width:120px;margin-right:15px" onclick="return confirm('<?php $text = __('Click OK to Turn On Logging or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
502
  </form>
503
  </div>
504
  </td>
@@ -506,7 +506,7 @@ $search = '';
506
  <div id="SecurityLogDeleteLogButton">
507
  <form name="DeleteLogForm" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/security-log/security-log.php' ); ?>" method="post">
508
  <?php wp_nonce_field('bps-delete-security-log'); ?>
509
- <input type="submit" name="Submit-Delete-Log" value="<?php esc_attr_e('Delete Log', 'bulletproof-security') ?>" class="button bps-button" style="width:120px" onclick="return confirm('<?php $text = __('Clicking OK will delete the contents of your Security Log file.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Click OK to Delete the Log file contents or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
510
  </form>
511
  </div>
512
  </td>
462
  <strong><label for="UA-ignore"><?php _e('Add User Agents|Bots to Ignore|Not Log', 'bulletproof-security'); ?></label></strong><br />
463
  <strong><label for="UA-ignore"><?php _e('Click the Read Me Help button for examples', 'bulletproof-security'); ?></label></strong><br />
464
  <input type="text" name="user-agent-ignore" class="regular-text-320" value="" />
465
+ <input type="submit" name="Submit-UserAgent-Ignore" value="<?php esc_attr_e('Add|Ignore', 'bulletproof-security') ?>" class="button bps-button" style="width:104px;height:auto;white-space:normal" onclick="return confirm('<?php $text = __('Clicking OK will Add the User Agent|Bot name you have entered to your DB and the 403.php Security Logging template.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Security logging checks are done by the 403.php Security Logging file and not by DB Queries.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('To remove User Agents|Bots from being ignored/not logged use the Remove|Allow tool.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Click OK to proceed or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
466
  </form>
467
  </div>
468
 
477
  wp_nonce_field('bulletproof_security_seclog_db_search');
478
  echo '<span style="font-size:13px;"><strong>'.__('Remove User Agents|Bots to Allow|Log', 'bulletproof-security').'</strong></span><br>';
479
  echo '<input type="text" name="userAgentSearchRemove" class="regular-text-320" value="" />';
480
+ echo '<input type="submit" name="Submit-SecLog-Search" value="'.esc_attr__('Remove|Allow', 'bulletproof-security').'" class="button bps-button" style="margin-left:3px;width:104px;height:auto;white-space:normal" onclick="return confirm('."'".__('Clicking OK will search your database and display User Agent|Bot DB search results in a Dynamic Radio button Form.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('To search for ALL User Agents|Bots to remove/delete from your database leave the text box blank and click the Remove|Allow button.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Click OK to proceed or click Cancel.', 'bulletproof-security')."'".')" />';
481
  echo '</form><br>';
482
 
483
  ?>
490
  <div id="SecurityLogTurnOffButton">
491
  <form name="BPSErrorLogOff" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/security-log/security-log.php' ); ?>" method="post">
492
  <?php wp_nonce_field('bps-error-log-off'); ?>
493
+ <input type="submit" name="Submit-Error-Log-Off" value="<?php esc_attr_e('Turn Off Logging', 'bulletproof-security') ?>" class="button bps-button" style="width:120px;margin-right:15px;height:auto;white-space:normal" onclick="return confirm('<?php $text = __('Click OK to Turn Off Error Logging or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
494
  </form>
495
  </div>
496
  </td>
498
  <div id="SecurityLogTurnOnButton">
499
  <form name="BPSErrorLogOn" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/security-log/security-log.php' ); ?>" method="post">
500
  <?php wp_nonce_field('bps-error-log-on'); ?>
501
+ <input type="submit" name="Submit-Error-Log-On" value="<?php esc_attr_e('Turn On Logging', 'bulletproof-security') ?>" class="button bps-button" style="width:120px;margin-right:15px;height:auto;white-space:normal" onclick="return confirm('<?php $text = __('Click OK to Turn On Logging or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
502
  </form>
503
  </div>
504
  </td>
506
  <div id="SecurityLogDeleteLogButton">
507
  <form name="DeleteLogForm" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/security-log/security-log.php' ); ?>" method="post">
508
  <?php wp_nonce_field('bps-delete-security-log'); ?>
509
+ <input type="submit" name="Submit-Delete-Log" value="<?php esc_attr_e('Delete Log', 'bulletproof-security') ?>" class="button bps-button" style="width:120px;height:auto;white-space:normal" onclick="return confirm('<?php $text = __('Clicking OK will delete the contents of your Security Log file.', 'bulletproof-security').'\n\n'.$bpsSpacePop.'\n\n'.__('Click OK to Delete the Log file contents or click Cancel.', 'bulletproof-security'); echo $text; ?>')" />
510
  </form>
511
  </div>
512
  </td>
admin/system-info/system-info.php CHANGED
@@ -882,6 +882,28 @@ function bpsPro_count_network_activated_plugins($count) {
882
  echo $text.'<br>';
883
  }
884
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
885
  echo '</span>';
886
  ?>
887
 
882
  echo $text.'<br>';
883
  }
884
 
885
+ $disable_functions = ini_get('disable_functions');
886
+ $suhosin_functions = ini_get('suhosin.executor.func.blacklist');
887
+
888
+ if ( ! extension_loaded( 'suhosin' ) ) {
889
+ echo '<strong><span class="sysinfo-label-text">'.__('PHP Disable Functions', 'bulletproof-security').':</span></strong> ';
890
+ if ( ini_get('disable_functions') != '' && ini_get('disable_functions') != false ) {
891
+ echo $disable_functions.'<br>';
892
+ } else {
893
+ $text = __('No PHP functions are disabled.', 'bulletproof-security');
894
+ echo $text.'<br>';
895
+ }
896
+
897
+ } elseif ( extension_loaded( 'suhosin' ) ) {
898
+ echo '<strong><span class="sysinfo-label-text">'.__('PHP Suhosin Function Blacklist', 'bulletproof-security').':</span></strong> ';
899
+ if ( ini_get('suhosin.executor.func.blacklist') != '' && ini_get('suhosin.executor.func.blacklist') != false ) {
900
+ echo $suhosin_functions.'<br>';
901
+ } else {
902
+ $text = __('No PHP functions are blacklisted.', 'bulletproof-security');
903
+ echo $text.'<br>';
904
+ }
905
+ }
906
+
907
  echo '</span>';
908
  ?>
909
 
admin/wizard/pwizard-autofix.php CHANGED
@@ -257,7 +257,7 @@ function bpsPro_Pwizard_Autofix_plugin_skip_bypass_root() {
257
  $woocommerce = 'woocommerce/woocommerce.php';
258
  $woocommerce_active = in_array( $woocommerce, apply_filters('active_plugins', get_option('active_plugins')));
259
  $pattern1 = '/RewriteCond\s%{REQUEST_URI}\s\^\.\*\/\(shop\|cart\|checkout\|wishlist\)\.\*\s\[NC\]/';
260
- $pattern2 = '/RewriteCond\s%{QUERY_STRING}\s\.\*\(order\|wc-ajax=get_refreshed_fragments\)\.\*\s\[NC\]/';
261
  $woocommerce_array1 = array();
262
  $woocommerce_array2 = array();
263
  $woocommerce_fix = '';
@@ -267,8 +267,8 @@ function bpsPro_Pwizard_Autofix_plugin_skip_bypass_root() {
267
 
268
  if ( ! preg_match( $pattern1, $bps_customcode_two ) ) {
269
 
270
- $woocommerce_array1[] = "# WooCommerce order & wc-ajax=get_refreshed_fragments Query String skip/bypass rule
271
- RewriteCond %{QUERY_STRING} .*(order|wc-ajax=get_refreshed_fragments).* [NC]
272
  RewriteRule . - [S=99]";
273
  }
274
 
257
  $woocommerce = 'woocommerce/woocommerce.php';
258
  $woocommerce_active = in_array( $woocommerce, apply_filters('active_plugins', get_option('active_plugins')));
259
  $pattern1 = '/RewriteCond\s%{REQUEST_URI}\s\^\.\*\/\(shop\|cart\|checkout\|wishlist\)\.\*\s\[NC\]/';
260
+ $pattern2 = '/RewriteCond\s%{QUERY_STRING}\s\.\*\(order\|wc-ajax=\)\.\*\s\[NC\]/';
261
  $woocommerce_array1 = array();
262
  $woocommerce_array2 = array();
263
  $woocommerce_fix = '';
267
 
268
  if ( ! preg_match( $pattern1, $bps_customcode_two ) ) {
269
 
270
+ $woocommerce_array1[] = "# WooCommerce order & wc-ajax= Query String skip/bypass rule
271
+ RewriteCond %{QUERY_STRING} .*(order|wc-ajax=).* [NC]
272
  RewriteRule . - [S=99]";
273
  }
274
 
admin/wizard/wizard.php CHANGED
@@ -1106,7 +1106,7 @@ bpsSetupWizardPrechecks();
1106
  <option value="On" <?php selected('On', $AutoFix_Options['bps_wizard_autofix']); ?>><?php _e('AutoFix On', 'bulletproof-security'); ?></option>
1107
  <option value="Off" <?php selected('Off', $AutoFix_Options['bps_wizard_autofix']); ?>><?php _e('AutoFix Off', 'bulletproof-security'); ?></option>
1108
  </select><br />
1109
- <input type="submit" name="Submit-AutoFix" class="button bps-button" style="margin:10px 0px 20px 0px;width:202px" value="<?php esc_attr_e('Save AutoFix Option', 'bulletproof-security') ?>" />
1110
  </form>
1111
 
1112
  <form name="SetupWizardGDMW" action="options.php#bps-tabs-2" method="post">
@@ -1118,7 +1118,7 @@ bpsSetupWizardPrechecks();
1118
  <option value="no" <?php selected('no', $GDMWoptions['bps_gdmw_hosting']); ?>><?php _e('No (default setting)', 'bulletproof-security'); ?></option>
1119
  <option value="yes" <?php selected('yes', $GDMWoptions['bps_gdmw_hosting']); ?>><?php _e('Yes (ONLY if you have Managed WordPress Hosting)', 'bulletproof-security'); ?></option>
1120
  </select><br />
1121
- <input type="submit" name="Submit-Wizard-GDMW" class="button bps-button" style="margin:10px 0px 20px 0px;width:202px" value="<?php esc_attr_e('Save GDMW Option', 'bulletproof-security') ?>" />
1122
  </form>
1123
 
1124
  <form name="SetupWizardHFiles" action="options.php#bps-tabs-2" method="post">
@@ -1131,7 +1131,7 @@ bpsSetupWizardPrechecks();
1131
  <option value="enabled" <?php selected('enabled', $HFiles_options['bps_htaccess_files']); ?>><?php _e('htaccess Files Enabled', 'bulletproof-security'); ?></option>
1132
  <option value="disabled" <?php selected('disabled', $HFiles_options['bps_htaccess_files']); ?>><?php _e('htaccess Files Disabled', 'bulletproof-security'); ?></option>
1133
  </select><br />
1134
- <input type="submit" name="Submit-Wizard-HFiles" class="button bps-button" style="margin:10px 0px 20px 0px;width:202px" value="<?php esc_attr_e('Enable|Disable', 'bulletproof-security') ?>" />
1135
  </form>
1136
 
1137
  <form name="wpadminEnableDisable" action="options.php#bps-tabs-2" method="post">
@@ -1142,7 +1142,7 @@ bpsSetupWizardPrechecks();
1142
  <option value="enabled" <?php selected('enabled', $BPS_wpadmin_Options['bps_wpadmin_restriction']); ?>><?php _e('wp-admin BulletProof Mode Enabled', 'bulletproof-security'); ?></option>
1143
  <option value="disabled" <?php selected('disabled', $BPS_wpadmin_Options['bps_wpadmin_restriction']); ?>><?php _e('wp-admin BulletProof Mode Disabled', 'bulletproof-security'); ?></option>
1144
  </select><br />
1145
- <input type="submit" name="Submit-Enable-Disable-wpadmin" class="button bps-button" style="margin:10px 0px 20px 0px;width:202px" value="<?php esc_attr_e('Enable|Disable', 'bulletproof-security') ?>" />
1146
  </form>
1147
 
1148
  <form name="ZipDownloadFix" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/wizard/wizard.php#bps-tabs-2' ); ?>" method="post">
@@ -1154,14 +1154,14 @@ bpsSetupWizardPrechecks();
1154
  <option value="Off" <?php selected('Off', $Zip_download_Options['bps_zip_download_fix']); ?>><?php _e('Zip File Download Fix Off', 'bulletproof-security'); ?></option>
1155
  <option value="On" <?php selected('On', $Zip_download_Options['bps_zip_download_fix']); ?>><?php _e('Zip File Download Fix On', 'bulletproof-security'); ?></option>
1156
  </select><br />
1157
- <input type="submit" name="Submit-Zip-Download-Fix" class="button bps-button" style="margin:10px 0px 20px 0px;width:232px" value="<?php esc_attr_e('Save Zip File Download Fix Option', 'bulletproof-security') ?>" />
1158
  </form>
1159
 
1160
  <form name="bpsNetLSM" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/wizard/wizard.php#bps-tabs-2' ); ?>" method="post">
1161
  <?php wp_nonce_field('bulletproof_security_net_lsm'); ?>
1162
  <div>
1163
  <strong><label for="NetLSM"><?php _e('Network|Multisite Sitewide Login Security Settings', 'bulletproof-security'); ?></label></strong><br />
1164
- <input type="submit" name="Submit-Net-LSM" class="button bps-button" style="margin:10px 0px 20px 0px;width:232px" value="<?php esc_attr_e('Save Network LSM Options Sitewide', 'bulletproof-security') ?>" />
1165
  </div>
1166
  </form>
1167
 
@@ -1169,7 +1169,7 @@ bpsSetupWizardPrechecks();
1169
  <?php wp_nonce_field('bulletproof_security_net_jtc'); ?>
1170
  <div>
1171
  <strong><label for="NetLSM"><?php _e('Network|Multisite Sitewide JTC-Lite Settings', 'bulletproof-security'); ?></label></strong><br />
1172
- <input type="submit" name="Submit-Net-JTC" class="button bps-button" style="margin:10px 0px 20px 0px;width:232px" value="<?php esc_attr_e('Save Network JTC Options Sitewide', 'bulletproof-security') ?>" />
1173
  </div>
1174
  </form>
1175
 
1106
  <option value="On" <?php selected('On', $AutoFix_Options['bps_wizard_autofix']); ?>><?php _e('AutoFix On', 'bulletproof-security'); ?></option>
1107
  <option value="Off" <?php selected('Off', $AutoFix_Options['bps_wizard_autofix']); ?>><?php _e('AutoFix Off', 'bulletproof-security'); ?></option>
1108
  </select><br />
1109
+ <input type="submit" name="Submit-AutoFix" class="button bps-button" style="margin:10px 0px 20px 0px;width:202px;height:auto;white-space:normal" value="<?php esc_attr_e('Save AutoFix Option', 'bulletproof-security') ?>" />
1110
  </form>
1111
 
1112
  <form name="SetupWizardGDMW" action="options.php#bps-tabs-2" method="post">
1118
  <option value="no" <?php selected('no', $GDMWoptions['bps_gdmw_hosting']); ?>><?php _e('No (default setting)', 'bulletproof-security'); ?></option>
1119
  <option value="yes" <?php selected('yes', $GDMWoptions['bps_gdmw_hosting']); ?>><?php _e('Yes (ONLY if you have Managed WordPress Hosting)', 'bulletproof-security'); ?></option>
1120
  </select><br />
1121
+ <input type="submit" name="Submit-Wizard-GDMW" class="button bps-button" style="margin:10px 0px 20px 0px;width:202px;height:auto;white-space:normal" value="<?php esc_attr_e('Save GDMW Option', 'bulletproof-security') ?>" />
1122
  </form>
1123
 
1124
  <form name="SetupWizardHFiles" action="options.php#bps-tabs-2" method="post">
1131
  <option value="enabled" <?php selected('enabled', $HFiles_options['bps_htaccess_files']); ?>><?php _e('htaccess Files Enabled', 'bulletproof-security'); ?></option>
1132
  <option value="disabled" <?php selected('disabled', $HFiles_options['bps_htaccess_files']); ?>><?php _e('htaccess Files Disabled', 'bulletproof-security'); ?></option>
1133
  </select><br />
1134
+ <input type="submit" name="Submit-Wizard-HFiles" class="button bps-button" style="margin:10px 0px 20px 0px;width:202px;height:auto;white-space:normal" value="<?php esc_attr_e('Enable|Disable', 'bulletproof-security') ?>" />
1135
  </form>
1136
 
1137
  <form name="wpadminEnableDisable" action="options.php#bps-tabs-2" method="post">
1142
  <option value="enabled" <?php selected('enabled', $BPS_wpadmin_Options['bps_wpadmin_restriction']); ?>><?php _e('wp-admin BulletProof Mode Enabled', 'bulletproof-security'); ?></option>
1143
  <option value="disabled" <?php selected('disabled', $BPS_wpadmin_Options['bps_wpadmin_restriction']); ?>><?php _e('wp-admin BulletProof Mode Disabled', 'bulletproof-security'); ?></option>
1144
  </select><br />
1145
+ <input type="submit" name="Submit-Enable-Disable-wpadmin" class="button bps-button" style="margin:10px 0px 20px 0px;width:202px;height:auto;white-space:normal" value="<?php esc_attr_e('Enable|Disable', 'bulletproof-security') ?>" />
1146
  </form>
1147
 
1148
  <form name="ZipDownloadFix" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/wizard/wizard.php#bps-tabs-2' ); ?>" method="post">
1154
  <option value="Off" <?php selected('Off', $Zip_download_Options['bps_zip_download_fix']); ?>><?php _e('Zip File Download Fix Off', 'bulletproof-security'); ?></option>
1155
  <option value="On" <?php selected('On', $Zip_download_Options['bps_zip_download_fix']); ?>><?php _e('Zip File Download Fix On', 'bulletproof-security'); ?></option>
1156
  </select><br />
1157
+ <input type="submit" name="Submit-Zip-Download-Fix" class="button bps-button" style="margin:10px 0px 20px 0px;width:232px;height:auto;white-space:normal" value="<?php esc_attr_e('Save Zip File Download Fix Option', 'bulletproof-security') ?>" />
1158
  </form>
1159
 
1160
  <form name="bpsNetLSM" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/wizard/wizard.php#bps-tabs-2' ); ?>" method="post">
1161
  <?php wp_nonce_field('bulletproof_security_net_lsm'); ?>
1162
  <div>
1163
  <strong><label for="NetLSM"><?php _e('Network|Multisite Sitewide Login Security Settings', 'bulletproof-security'); ?></label></strong><br />
1164
+ <input type="submit" name="Submit-Net-LSM" class="button bps-button" style="margin:10px 0px 20px 0px;width:232px;height:auto;white-space:normal" value="<?php esc_attr_e('Save Network LSM Options Sitewide', 'bulletproof-security') ?>" />
1165
  </div>
1166
  </form>
1167
 
1169
  <?php wp_nonce_field('bulletproof_security_net_jtc'); ?>
1170
  <div>
1171
  <strong><label for="NetLSM"><?php _e('Network|Multisite Sitewide JTC-Lite Settings', 'bulletproof-security'); ?></label></strong><br />
1172
+ <input type="submit" name="Submit-Net-JTC" class="button bps-button" style="margin:10px 0px 20px 0px;width:232px;height:auto;white-space:normal" value="<?php esc_attr_e('Save Network JTC Options Sitewide', 'bulletproof-security') ?>" />
1173
  </div>
1174
  </form>
1175
 
bulletproof-security.php CHANGED
@@ -5,7 +5,7 @@ Plugin URI: https://forum.ait-pro.com/read-me-first/
5
  Text Domain: bulletproof-security
6
  Domain Path: /languages/
7
  Description: <strong>Feature Highlights:</strong> Setup Wizard &bull; MScan Malware Scanner &bull; .htaccess Website Security Protection (Firewalls) &bull; Security Logging|HTTP Error Logging &bull; DB Backup &bull; DB Table Prefix Changer &bull; Login Security & Monitoring &bull; JTC-Lite Login Form Bot Lockout Protection &bull; Idle Session Logout (ISL) &bull; Auth Cookie Expiration (ACE) &bull; UI Theme Skin Changer &bull; System Info: Extensive System, Server and Security Status Information &bull; FrontEnd|BackEnd Maintenance Mode
8
- Version: 2.7
9
  Author: AITpro Website Security
10
  Author URI: https://forum.ait-pro.com/read-me-first/
11
  */
@@ -28,9 +28,9 @@ Author URI: https://forum.ait-pro.com/read-me-first/
28
  */
29
 
30
  // BPS variables
31
- define( 'BULLETPROOF_VERSION', '2.7' );
32
- $bps_last_version = '2.6';
33
- $bps_version = '2.7';
34
  $aitpro_bullet = '<img src="'.plugins_url('/bulletproof-security/admin/images/aitpro-bullet.png').'" style="padding:0px 3px 0px 3px;" />';
35
  // Top div & bottom div
36
  $bps_topDiv = '<div id="message" class="updated" style="background-color:#dfecf2;border:1px solid #999;-moz-border-radius-topleft:3px;-webkit-border-top-left-radius:3px;-khtml-border-top-left-radius:3px;border-top-left-radius:3px;-moz-border-radius-topright:3px;-webkit-border-top-right-radius:3px;-khtml-border-top-right-radius:3px;border-top-right-radius:3px;-webkit-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);-moz-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);"><p>';
5
  Text Domain: bulletproof-security
6
  Domain Path: /languages/
7
  Description: <strong>Feature Highlights:</strong> Setup Wizard &bull; MScan Malware Scanner &bull; .htaccess Website Security Protection (Firewalls) &bull; Security Logging|HTTP Error Logging &bull; DB Backup &bull; DB Table Prefix Changer &bull; Login Security & Monitoring &bull; JTC-Lite Login Form Bot Lockout Protection &bull; Idle Session Logout (ISL) &bull; Auth Cookie Expiration (ACE) &bull; UI Theme Skin Changer &bull; System Info: Extensive System, Server and Security Status Information &bull; FrontEnd|BackEnd Maintenance Mode
8
+ Version: 2.8
9
  Author: AITpro Website Security
10
  Author URI: https://forum.ait-pro.com/read-me-first/
11
  */
28
  */
29
 
30
  // BPS variables
31
+ define( 'BULLETPROOF_VERSION', '2.8' );
32
+ $bps_last_version = '2.7';
33
+ $bps_version = '2.8';
34
  $aitpro_bullet = '<img src="'.plugins_url('/bulletproof-security/admin/images/aitpro-bullet.png').'" style="padding:0px 3px 0px 3px;" />';
35
  // Top div & bottom div
36
  $bps_topDiv = '<div id="message" class="updated" style="background-color:#dfecf2;border:1px solid #999;-moz-border-radius-topleft:3px;-webkit-border-top-left-radius:3px;-khtml-border-top-left-radius:3px;border-top-left-radius:3px;-moz-border-radius-topright:3px;-webkit-border-top-right-radius:3px;-khtml-border-top-right-radius:3px;border-top-right-radius:3px;-webkit-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);-moz-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);"><p>';
includes/general-functions.php CHANGED
@@ -1021,6 +1021,7 @@ function bpsPro_new_version_db_options_files_autoupdate() {
1021
  }
1022
  }
1023
 
 
1024
  // 2.4: pre-save JTC-Lite db options
1025
  $jtc_options = get_option('bulletproof_security_options_login_security_jtc');
1026
 
@@ -1045,7 +1046,7 @@ function bpsPro_new_version_db_options_files_autoupdate() {
1045
  $jtc1 = ! $jtc_options['bps_tooltip_captcha_key'] ? 'jtc' : $jtc_options['bps_tooltip_captcha_key'];
1046
  $jtc2 = ! $jtc_options['bps_tooltip_captcha_hover_text'] ? 'Type/Enter: jtc' : $jtc_options['bps_tooltip_captcha_hover_text'];
1047
  $jtc3 = ! $jtc_options['bps_tooltip_captcha_title'] ? 'Hover or click the text box below' : $jtc_options['bps_tooltip_captcha_title'];
1048
- $jtc4 = ! $jtc_options['bps_jtc_login_form'] ? '1' : $jtc_options['bps_jtc_login_form'];
1049
 
1050
  $jtc_db_options = array(
1051
  'bps_tooltip_captcha_key' => $jtc1,
1021
  }
1022
  }
1023
 
1024
+ // 2.5: Change default setting to Login Form CAPTCHA Off. Has New Feature Dismiss Notice.
1025
  // 2.4: pre-save JTC-Lite db options
1026
  $jtc_options = get_option('bulletproof_security_options_login_security_jtc');
1027
 
1046
  $jtc1 = ! $jtc_options['bps_tooltip_captcha_key'] ? 'jtc' : $jtc_options['bps_tooltip_captcha_key'];
1047
  $jtc2 = ! $jtc_options['bps_tooltip_captcha_hover_text'] ? 'Type/Enter: jtc' : $jtc_options['bps_tooltip_captcha_hover_text'];
1048
  $jtc3 = ! $jtc_options['bps_tooltip_captcha_title'] ? 'Hover or click the text box below' : $jtc_options['bps_tooltip_captcha_title'];
1049
+ $jtc4 = ! $jtc_options['bps_jtc_login_form'] ? '0' : $jtc_options['bps_jtc_login_form'];
1050
 
1051
  $jtc_db_options = array(
1052
  'bps_tooltip_captcha_key' => $jtc1,
includes/hud-autofix-whitelist.php CHANGED
@@ -117,7 +117,7 @@ function bpsPro_HUD_autofix_whitelist_check() {
117
 
118
  if ( $woocommerce_active == 1 || is_plugin_active_for_network( $woocommerce ) ) {
119
  $ptsb1 = '/RewriteCond\s%{REQUEST_URI}\s\^\.\*\/\(shop\|cart\|checkout\|wishlist\)\.\*\s\[NC\]/';
120
- $ptsb2 = '/RewriteCond\s%{QUERY_STRING}\s\.\*\(order\|wc-ajax=get_refreshed_fragments\)\.\*\s\[NC\]/';
121
  if ( ! preg_match( $ptsb1, $bps_customcode_two ) || ! preg_match( $ptsb2, $bps_customcode_two ) ) {
122
  $autofix_message = 1;
123
  $debug_PTSB .= __('CC Root Text Box 10: WooCommerce Plugin', 'bulletproof-security').'<br>';
117
 
118
  if ( $woocommerce_active == 1 || is_plugin_active_for_network( $woocommerce ) ) {
119
  $ptsb1 = '/RewriteCond\s%{REQUEST_URI}\s\^\.\*\/\(shop\|cart\|checkout\|wishlist\)\.\*\s\[NC\]/';
120
+ $ptsb2 = '/RewriteCond\s%{QUERY_STRING}\s\.\*\(order\|wc-ajax=\)\.\*\s\[NC\]/';
121
  if ( ! preg_match( $ptsb1, $bps_customcode_two ) || ! preg_match( $ptsb2, $bps_customcode_two ) ) {
122
  $autofix_message = 1;
123
  $debug_PTSB .= __('CC Root Text Box 10: WooCommerce Plugin', 'bulletproof-security').'<br>';
includes/hud-dismiss-functions.php CHANGED
@@ -25,6 +25,7 @@ function bps_HUD_WP_Dashboard() {
25
  bpsPro_hud_speed_boost_cache_code();
26
  bps_hud_check_autoupdate();
27
  bpsPro_hud_mscan_notice();
 
28
  //bps_hud_check_public_username();
29
  }
30
  }
@@ -669,7 +670,7 @@ function bpsPro_hud_mscan_notice() {
669
 
670
  if ( ! get_user_meta($user_id, 'bps_ignore_mscan_notice') ) {
671
 
672
- $text = '<div style="background-color:#dfecf2;border:1px solid #999;font-size:1em;font-weight:600;padding:0px 5px;margin:0px 0px 35px 0px;-moz-border-radius-topleft:3px;-webkit-border-top-left-radius:3px;-khtml-border-top-left-radius:3px;border-top-left-radius:3px;-moz-border-radius-topright:3px;-webkit-border-top-right-radius:3px;-khtml-border-top-right-radius:3px;border-top-right-radius:3px;-webkit-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);-moz-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);"><font color="blue">'.__('MScan First Run Notice', 'bulletproof-security').'</font><br>'.__('Please take a few minutes to read the "Basic Info|Recommendations|Limitations|Restrictions" help section in the', 'bulletproof-security').' <a href="https://forum.ait-pro.com/forums/topic/mscan-malware-scanner-guide/" target="_blank" title="MScan Malware Scanner Guide">'.__('MScan Malware Scanner Guide', 'bulletproof-security').'</a> '.__('before running a scan.', 'bulletproof-security').'<br>'.__('It is highly recommended that you use the Scan Time Estimate Tool before running an actual scan. The Scan Time Estimate Tool calculates the total estimated time of a scan based on your MScan Option settings without actually running a scan. To Dismiss this Notice click the Dismiss Notice button below. To Reset Dismiss Notices click the Reset|Recheck Dismiss Notices button on the Custom Code page.', 'bulletproof-security').'<br><div style="float:left;margin:3px 0px 3px 0px;padding:2px 6px 2px 6px;background-color:#e8e8e8;border:1px solid gray;"><a href="'.admin_url( 'admin.php?page=bulletproof-security%2Fadmin%2Fmscan%2Fmscan.php&bps_mscan_nag_ignore=0' ).''.'" style="text-decoration:none;font-weight:bold;">'.__('Dismiss Notice', 'bulletproof-security').'</a></div></div>';
673
  echo $text;
674
  }
675
  }
@@ -686,4 +687,41 @@ $user_id = $current_user->ID;
686
  }
687
  }
688
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
689
  ?>
25
  bpsPro_hud_speed_boost_cache_code();
26
  bps_hud_check_autoupdate();
27
  bpsPro_hud_mscan_notice();
28
+ bpsPro_hud_jtc_lite_notice();
29
  //bps_hud_check_public_username();
30
  }
31
  }
670
 
671
  if ( ! get_user_meta($user_id, 'bps_ignore_mscan_notice') ) {
672
 
673
+ $text = '<div style="background-color:#dfecf2;border:1px solid #999;font-size:1em;font-weight:600;padding:0px 5px;margin:0px 0px 35px 0px;-moz-border-radius-topleft:3px;-webkit-border-top-left-radius:3px;-khtml-border-top-left-radius:3px;border-top-left-radius:3px;-moz-border-radius-topright:3px;-webkit-border-top-right-radius:3px;-khtml-border-top-right-radius:3px;border-top-right-radius:3px;-webkit-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);-moz-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);"><font color="blue">'.__('MScan First Run Notice', 'bulletproof-security').'</font><br>'.__('Please take a few minutes to read the "Basic Info|Recommendations|Limitations|Restrictions" help section in the', 'bulletproof-security').' <a href="https://forum.ait-pro.com/forums/topic/mscan-malware-scanner-guide/" target="_blank" title="MScan Malware Scanner Guide">'.__('MScan Malware Scanner Guide', 'bulletproof-security').'</a> '.__('before running a scan.', 'bulletproof-security').'<br>'.__('It is highly recommended that you use the Scan Time Estimate Tool before running an actual scan. The Scan Time Estimate Tool calculates the total estimated time of a scan based on your MScan Option settings without actually running a scan. To Dismiss this Notice click the Dismiss Notice button below. To Reset Dismiss Notices click the Reset|Recheck Dismiss Notices button on the BPS Custom Code page.', 'bulletproof-security').'<br><div style="float:left;margin:3px 0px 3px 0px;padding:2px 6px 2px 6px;background-color:#e8e8e8;border:1px solid gray;"><a href="'.admin_url( 'admin.php?page=bulletproof-security%2Fadmin%2Fmscan%2Fmscan.php&bps_mscan_nag_ignore=0' ).''.'" style="text-decoration:none;font-weight:bold;">'.__('Dismiss Notice', 'bulletproof-security').'</a></div></div>';
674
  echo $text;
675
  }
676
  }
687
  }
688
  }
689
 
690
+ // Heads Up Display w/ Dismiss - JTC-Lite New Feature Dismiss Notice
691
+ function bpsPro_hud_jtc_lite_notice() {
692
+
693
+ $jtc_options = get_option('bulletproof_security_options_login_security_jtc');
694
+
695
+ if ( $jtc_options['bps_jtc_login_form'] == '0' ) {
696
+
697
+ global $current_user;
698
+ $user_id = $current_user->ID;
699
+
700
+ if ( ! get_user_meta($user_id, 'bps_ignore_jtc_lite_notice') ) {
701
+
702
+ if ( esc_html($_SERVER['QUERY_STRING']) == '' && basename(esc_html($_SERVER['REQUEST_URI'])) != 'wp-admin' ) {
703
+ $bps_base = basename(esc_html($_SERVER['REQUEST_URI'])) . '?';
704
+ } elseif ( esc_html($_SERVER['QUERY_STRING']) == '' && basename(esc_html($_SERVER['REQUEST_URI'])) == 'wp-admin' ) {
705
+ $bps_base = basename( str_replace( 'wp-admin', 'index.php?', esc_html($_SERVER['REQUEST_URI'])));
706
+ } else {
707
+ $bps_base = str_replace( admin_url(), '', esc_html($_SERVER['REQUEST_URI']) ) . '&';
708
+ }
709
+
710
+ $text = '<div style="background-color:#dfecf2;border:1px solid #999;font-size:1em;font-weight:600;padding:0px 5px;margin:0px 0px 35px 0px;-moz-border-radius-topleft:3px;-webkit-border-top-left-radius:3px;-khtml-border-top-left-radius:3px;border-top-left-radius:3px;-moz-border-radius-topright:3px;-webkit-border-top-right-radius:3px;-khtml-border-top-right-radius:3px;border-top-right-radius:3px;-webkit-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);-moz-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);"><font color="blue">'.__('BPS New Feature Notice: JTC-Lite', 'bulletproof-security').'</font><br>'.__('JTC-Lite protects the WordPress Login page Form against automated SpamBot and HackerBot Brute Force Login attacks', 'bulletproof-security').'<br>'.__('and also prevents User Accounts from being locked repeatedly by Brute Force Login Bot attacks on your Login page Form.', 'bulletproof-security').'<br>'.__('To enable/turn On JTC-Lite, click this ', 'bulletproof-security').'<a href="'.admin_url( 'admin.php?page=bulletproof-security/admin/login/login.php#bps-tabs-2' ).'">'.esc_attr__('JTC-Lite link', 'bulletproof-security').'</a>'.__('. Click/check the Login Form Checkbox and click the Save Options button.', 'bulletproof-security').'<br>'.__('To Dismiss this Notice click the Dismiss Notice button below. To Reset Dismiss Notices click the Reset|Recheck Dismiss Notices button on the BPS Custom Code page.', 'bulletproof-security').'<br><div style="float:left;margin:3px 0px 3px 0px;padding:2px 6px 2px 6px;background-color:#e8e8e8;border:1px solid gray;"><a href="'.$bps_base.'bpsPro_jtc_lite_nag_ignore=0'.'" style="text-decoration:none;font-weight:600;">'.__('Dismiss Notice', 'bulletproof-security').'</a></div></div>';
711
+ echo $text;
712
+ }
713
+ }
714
+ }
715
+
716
+ add_action('admin_init', 'bpsPro_jtc_lite_nag_ignore');
717
+
718
+ function bpsPro_jtc_lite_nag_ignore() {
719
+ global $current_user;
720
+ $user_id = $current_user->ID;
721
+
722
+ if ( isset($_GET['bpsPro_jtc_lite_nag_ignore']) && '0' == $_GET['bpsPro_jtc_lite_nag_ignore'] ) {
723
+ add_user_meta($user_id, 'bps_ignore_jtc_lite_notice', 'true', true);
724
+ }
725
+ }
726
+
727
  ?>
includes/login-security.php CHANGED
@@ -136,7 +136,7 @@ if ( $BPSoptions['bps_login_security_OnOff'] == 'On' && $BPSoptions['bps_login_s
136
  if ( $user && $wpdb->num_rows == 0 && $user->ID != 0 && wp_check_password($password, $user->user_pass, $user->ID) ) {
137
  $status = 'Not Locked';
138
  $lockout_time = '0';
139
- $failed_logins ='0';
140
 
141
  if ( $insert_rows = $wpdb->insert( $bpspro_login_table, array( 'status' => $status, 'user_id' => $user->ID, 'username' => $user->user_login, 'public_name' => $user->display_name, 'email' => $user->user_email, 'role' => $user->roles[0], 'human_time' => current_time('mysql'), 'login_time' => $login_time, 'lockout_time' => $lockout_time, 'failed_logins' => $failed_logins, 'ip_address' => $ip_address, 'hostname' => $hostname, 'request_uri' => $request_uri ) ) ) {
142
 
@@ -183,7 +183,7 @@ if ( $BPSoptions['bps_login_security_OnOff'] == 'On' && $BPSoptions['bps_login_s
183
  if ( $wpdb->num_rows != 0 && $user->ID != 0 && wp_check_password($password, $user->user_pass, $user->ID) && $row->status != 'Locked') {
184
  $status = 'Not Locked';
185
  $lockout_time = '0';
186
- $failed_logins ='0';
187
 
188
  if ( $insert_rows = $wpdb->insert( $bpspro_login_table, array( 'status' => $status, 'user_id' => $user->ID, 'username' => $user->user_login, 'public_name' => $user->display_name, 'email' => $user->user_email, 'role' => $user->roles[0], 'human_time' => current_time('mysql'), 'login_time' => $login_time, 'lockout_time' => $lockout_time, 'failed_logins' => $failed_logins, 'ip_address' => $ip_address, 'hostname' => $hostname, 'request_uri' => $request_uri ) ) ) {
189
 
@@ -741,13 +741,19 @@ if ( $BPSoptions['bps_login_security_OnOff'] == 'On' && isset( $_POST['wp-submit
741
  if ( ! wp_check_password($password, $user->user_pass, $user->ID) && $BPSoptions['bps_login_security_errors'] == 'wpErrors' ) {
742
 
743
  if ( $BPSoptions['bps_login_security_remaining'] == 'On' ) {
744
-
 
 
 
 
 
 
745
  if ( strpos( $username, '@' ) ) {
746
- return new WP_Error('incorrect_password', sprintf('<strong>'.__('ERROR:', 'bulletproof-security').'</strong>'.__(' The password you entered for the email address ', 'bulletproof-security').'<strong>%1$s</strong>'.__(' is incorrect. ', 'bulletproof-security').' <a href="%2$s">'.__('Lost your password?', 'bulletproof-security').'</a>'.__(' Login Attempts Remaining ', 'bulletproof-security').'<strong>%3$d</strong>', $username, wp_lostpassword_url(), $remaining ) );
747
 
748
  } else {
749
 
750
- return new WP_Error('incorrect_password', sprintf('<strong>'.__('ERROR:', 'bulletproof-security').'</strong>'.__(' The password you entered for the username ', 'bulletproof-security').'<strong>%1$s</strong>'.__(' is incorrect. ', 'bulletproof-security').' <a href="%2$s">'.__('Lost your password?', 'bulletproof-security').'</a>'.__(' Login Attempts Remaining ', 'bulletproof-security').'<strong>%3$d</strong>', $username, wp_lostpassword_url(), $remaining ) );
751
  }
752
 
753
  } else {
@@ -768,7 +774,13 @@ if ( $BPSoptions['bps_login_security_OnOff'] == 'On' && isset( $_POST['wp-submit
768
 
769
  if ( $BPSoptions['bps_login_security_remaining'] == 'On' ) {
770
 
771
- return new WP_Error('incorrect_password', sprintf('<strong>'.__('ERROR:', 'bulletproof-security').'</strong>'.__(' Invalid Entry.', 'bulletproof-security').' <a href="%2$s">'.__('Lost your password?', 'bulletproof-security').'</a>'.__(' Login Attempts Remaining ', 'bulletproof-security').'<strong>%3$d</strong>', $username, wp_lostpassword_url(), $remaining ) );
 
 
 
 
 
 
772
 
773
  } else {
774
 
@@ -781,7 +793,13 @@ if ( $BPSoptions['bps_login_security_OnOff'] == 'On' && isset( $_POST['wp-submit
781
 
782
  if ( $BPSoptions['bps_login_security_remaining'] == 'On' ) {
783
 
784
- return new WP_Error('incorrect_password', sprintf('<strong>'.__('ERROR:', 'bulletproof-security').'</strong>'.__(' Invalid Entry.', 'bulletproof-security').' <a href="%2$s">'.__('Lost your password?', 'bulletproof-security').'</a>'.__(' Login Attempts Remaining ', 'bulletproof-security').'<strong>%3$d</strong>', $username, wp_lostpassword_url(), $remaining ) );
 
 
 
 
 
 
785
 
786
  } else {
787
 
136
  if ( $user && $wpdb->num_rows == 0 && $user->ID != 0 && wp_check_password($password, $user->user_pass, $user->ID) ) {
137
  $status = 'Not Locked';
138
  $lockout_time = '0';
139
+ $failed_logins = '0';
140
 
141
  if ( $insert_rows = $wpdb->insert( $bpspro_login_table, array( 'status' => $status, 'user_id' => $user->ID, 'username' => $user->user_login, 'public_name' => $user->display_name, 'email' => $user->user_email, 'role' => $user->roles[0], 'human_time' => current_time('mysql'), 'login_time' => $login_time, 'lockout_time' => $lockout_time, 'failed_logins' => $failed_logins, 'ip_address' => $ip_address, 'hostname' => $hostname, 'request_uri' => $request_uri ) ) ) {
142
 
183
  if ( $wpdb->num_rows != 0 && $user->ID != 0 && wp_check_password($password, $user->user_pass, $user->ID) && $row->status != 'Locked') {
184
  $status = 'Not Locked';
185
  $lockout_time = '0';
186
+ $failed_logins = '0';
187
 
188
  if ( $insert_rows = $wpdb->insert( $bpspro_login_table, array( 'status' => $status, 'user_id' => $user->ID, 'username' => $user->user_login, 'public_name' => $user->display_name, 'email' => $user->user_email, 'role' => $user->roles[0], 'human_time' => current_time('mysql'), 'login_time' => $login_time, 'lockout_time' => $lockout_time, 'failed_logins' => $failed_logins, 'ip_address' => $ip_address, 'hostname' => $hostname, 'request_uri' => $request_uri ) ) ) {
189
 
741
  if ( ! wp_check_password($password, $user->user_pass, $user->ID) && $BPSoptions['bps_login_security_errors'] == 'wpErrors' ) {
742
 
743
  if ( $BPSoptions['bps_login_security_remaining'] == 'On' ) {
744
+
745
+ if ( $failed_logins == 1 ) {
746
+ $attempts_remaining = $BPSoptions['bps_max_logins'] - 1;
747
+ } else {
748
+ $attempts_remaining = $remaining;
749
+ }
750
+
751
  if ( strpos( $username, '@' ) ) {
752
+ return new WP_Error('incorrect_password', sprintf('<strong>'.__('ERROR:', 'bulletproof-security').'</strong>'.__(' The password you entered for the email address ', 'bulletproof-security').'<strong>%1$s</strong>'.__(' is incorrect. ', 'bulletproof-security').' <a href="%2$s">'.__('Lost your password?', 'bulletproof-security').'</a>'.__(' Login Attempts Remaining ', 'bulletproof-security').'<strong>%3$d</strong>', $username, wp_lostpassword_url(), $attempts_remaining ) );
753
 
754
  } else {
755
 
756
+ return new WP_Error('incorrect_password', sprintf('<strong>'.__('ERROR:', 'bulletproof-security').'</strong>'.__(' The password you entered for the username ', 'bulletproof-security').'<strong>%1$s</strong>'.__(' is incorrect. ', 'bulletproof-security').' <a href="%2$s">'.__('Lost your password?', 'bulletproof-security').'</a>'.__(' Login Attempts Remaining ', 'bulletproof-security').'<strong>%3$d</strong>', $username, wp_lostpassword_url(), $attempts_remaining ) );
757
  }
758
 
759
  } else {
774
 
775
  if ( $BPSoptions['bps_login_security_remaining'] == 'On' ) {
776
 
777
+ if ( $failed_logins == 1 ) {
778
+ $attempts_remaining = $BPSoptions['bps_max_logins'] - 1;
779
+ } else {
780
+ $attempts_remaining = $remaining;
781
+ }
782
+
783
+ return new WP_Error('incorrect_password', sprintf('<strong>'.__('ERROR:', 'bulletproof-security').'</strong>'.__(' Invalid Entry.', 'bulletproof-security').' <a href="%2$s">'.__('Lost your password?', 'bulletproof-security').'</a>'.__(' Login Attempts Remaining ', 'bulletproof-security').'<strong>%3$d</strong>', $username, wp_lostpassword_url(), $attempts_remaining ) );
784
 
785
  } else {
786
 
793
 
794
  if ( $BPSoptions['bps_login_security_remaining'] == 'On' ) {
795
 
796
+ if ( $failed_logins == 1 ) {
797
+ $attempts_remaining = $BPSoptions['bps_max_logins'] - 1;
798
+ } else {
799
+ $attempts_remaining = $remaining;
800
+ }
801
+
802
+ return new WP_Error('incorrect_password', sprintf('<strong>'.__('ERROR:', 'bulletproof-security').'</strong>'.__(' Invalid Entry.', 'bulletproof-security').' <a href="%2$s">'.__('Lost your password?', 'bulletproof-security').'</a>'.__(' Login Attempts Remaining ', 'bulletproof-security').'<strong>%3$d</strong>', $username, wp_lostpassword_url(), $attempts_remaining ) );
803
 
804
  } else {
805
 
languages/bulletproof-security.pot CHANGED
@@ -3,7 +3,7 @@ msgid ""
3
  msgstr ""
4
  "Project-Id-Version: bulletproof-security\n"
5
  "Report-Msgid-Bugs-To: \n"
6
- "POT-Creation-Date: 2017-09-26 12:52-0700\n"
7
  "PO-Revision-Date: 2015-06-20 19:13-0800\n"
8
  "Last-Translator: Ed Alexander <edward@ait-pro.com>\n"
9
  "Language-Team: AITpro <info@ait-pro.com>\n"
@@ -751,7 +751,15 @@ msgstr ""
751
  msgid "Success! The MScan First Run Notice is reset."
752
  msgstr ""
753
 
754
- #: admin/core/core-forms.php:649
 
 
 
 
 
 
 
 
755
  msgid "Refresh Status"
756
  msgstr ""
757
 
@@ -1597,8 +1605,8 @@ msgstr ""
1597
  msgid "Rate BPS"
1598
  msgstr ""
1599
 
1600
- #: admin/core/core.php:126 admin/includes/admin.php:301
1601
- #: admin/includes/admin.php:302
1602
  msgid "BulletProof Security ~ htaccess Core"
1603
  msgstr ""
1604
 
@@ -1708,7 +1716,7 @@ msgstr ""
1708
  #: admin/core/core.php:1500 admin/core/core.php:1517 admin/login/login.php:142
1709
  #: admin/login/login.php:199 admin/login/login.php:877
1710
  #: admin/login/login.php:1021 admin/system-info/system-info.php:116
1711
- #: admin/system-info/system-info.php:999
1712
  msgid "Permission Denied"
1713
  msgstr ""
1714
 
@@ -1900,8 +1908,8 @@ msgstr ""
1900
  #: admin/security-log/security-log.php:465
1901
  #: admin/security-log/security-log.php:480
1902
  #: admin/security-log/security-log.php:698
1903
- #: admin/system-info/system-info.php:1055
1904
- #: admin/system-info/system-info.php:1116
1905
  msgid "Click OK to proceed or click Cancel."
1906
  msgstr ""
1907
 
@@ -2447,7 +2455,7 @@ msgstr ""
2447
  #: admin/core/core.php:1639 admin/email-log-settings/email-log-settings.php:221
2448
  #: admin/login/login.php:1357 admin/maintenance/maintenance.php:2097
2449
  #: admin/security-log/security-log.php:806
2450
- #: admin/system-info/system-info.php:1135
2451
  msgid "Contributors Page"
2452
  msgstr ""
2453
 
@@ -2458,7 +2466,7 @@ msgstr ""
2458
  #: admin/core/core.php:1641 admin/email-log-settings/email-log-settings.php:220
2459
  #: admin/login/login.php:1356 admin/maintenance/maintenance.php:2098
2460
  #: admin/security-log/security-log.php:805
2461
- #: admin/system-info/system-info.php:1134
2462
  msgid "Security Log Event Codes"
2463
  msgstr ""
2464
 
@@ -2471,7 +2479,7 @@ msgstr ""
2471
  #: admin/email-log-settings/email-log-settings.php:222
2472
  #: admin/login/login.php:1358 admin/maintenance/maintenance.php:2099
2473
  #: admin/mscan/mscan.php:1901 admin/security-log/security-log.php:807
2474
- #: admin/system-info/system-info.php:1136 admin/theme-skin/theme-skin.php:222
2475
  msgid "Forum: Search, Troubleshooting Steps & Post Questions For Assistance"
2476
  msgstr ""
2477
 
@@ -3405,7 +3413,7 @@ msgstr ""
3405
  #: admin/db-backup-security/db-backup-security.php:259
3406
  #: admin/db-backup-security/db-backup-security.php:276
3407
  #: admin/db-backup-security/db-backup-security.php:278
3408
- #: admin/includes/admin.php:307
3409
  msgid "DB Backup"
3410
  msgstr ""
3411
 
@@ -4267,7 +4275,7 @@ msgstr ""
4267
 
4268
  #: admin/email-log-settings/email-log-settings.php:102
4269
  #: admin/email-log-settings/email-log-settings.php:104
4270
- #: admin/includes/admin.php:318
4271
  msgid "Email|Log Settings"
4272
  msgstr ""
4273
 
@@ -4418,141 +4426,141 @@ msgstr ""
4418
 
4419
  #: admin/email-log-settings/email-log-settings.php:216
4420
  #: admin/login/login.php:1352 admin/security-log/security-log.php:801
4421
- #: admin/system-info/system-info.php:1131
4422
  msgid "BulletProof Security Help &amp; FAQ"
4423
  msgstr ""
4424
 
4425
- #: admin/includes/admin.php:285
4426
  msgid "BulletProof Security Settings"
4427
  msgstr ""
4428
 
4429
- #: admin/includes/admin.php:285 admin/includes/admin.php:301
4430
  msgid "BPS Security"
4431
  msgstr ""
4432
 
4433
- #: admin/includes/admin.php:286 admin/includes/admin.php:287
4434
  msgid "Login Security ~ JTC-Lite"
4435
  msgstr ""
4436
 
4437
- #: admin/includes/admin.php:286 admin/includes/admin.php:304
4438
  msgid "Login Security"
4439
  msgstr ""
4440
 
4441
- #: admin/includes/admin.php:287 admin/includes/admin.php:305
4442
  #: admin/login/login.php:158 admin/login/login.php:806
4443
  #: admin/login/login.php:808
4444
  msgid "JTC-Lite"
4445
  msgstr ""
4446
 
4447
- #: admin/includes/admin.php:293 admin/includes/admin.php:314
4448
  #: admin/maintenance/maintenance.php:163 admin/maintenance/maintenance.php:195
4449
  #: admin/maintenance/maintenance.php:197
4450
  msgid "Maintenance Mode"
4451
  msgstr ""
4452
 
4453
- #: admin/includes/admin.php:296 admin/includes/admin.php:317
4454
  #: admin/system-info/system-info.php:88
4455
  msgid "System Info"
4456
  msgstr ""
4457
 
4458
- #: admin/includes/admin.php:297 admin/includes/admin.php:319
4459
  #: admin/theme-skin/theme-skin.php:91 admin/theme-skin/theme-skin.php:107
4460
  #: admin/theme-skin/theme-skin.php:109
4461
  msgid "UI|UX Settings"
4462
  msgstr ""
4463
 
4464
- #: admin/includes/admin.php:302
4465
  msgid "htaccess Core"
4466
  msgstr ""
4467
 
4468
- #: admin/includes/admin.php:303
4469
  msgid "MScan ~ Malware Scanner"
4470
  msgstr ""
4471
 
4472
- #: admin/includes/admin.php:303 admin/mscan/mscan.php:98
4473
  #: admin/mscan/mscan.php:114 admin/mscan/mscan.php:116
4474
  msgid "MScan"
4475
  msgstr ""
4476
 
4477
- #: admin/includes/admin.php:304 admin/includes/admin.php:305
4478
- #: admin/includes/admin.php:306
4479
  msgid "Login Security ~ JTC-Lite ~ ISL ~ ACE"
4480
  msgstr ""
4481
 
4482
- #: admin/includes/admin.php:306
4483
  msgid "Idle Session Logout<br>Cookie Expiration"
4484
  msgstr ""
4485
 
4486
- #: admin/includes/admin.php:307
4487
  msgid "DB Backup & Security"
4488
  msgstr ""
4489
 
4490
- #: admin/includes/admin.php:308 admin/security-log/security-log.php:226
4491
  #: admin/security-log/security-log.php:241
4492
  #: admin/security-log/security-log.php:243
4493
  msgid "Security Log"
4494
  msgstr ""
4495
 
4496
- #: admin/includes/admin.php:320 admin/wizard/wizard.php:974
4497
  #: admin/wizard/wizard.php:1004 admin/wizard/wizard.php:1006
4498
  #: bulletproof-security.php:100 bulletproof-security.php:103
4499
  msgid "Setup Wizard"
4500
  msgstr ""
4501
 
4502
- #: admin/includes/admin.php:323 admin/includes/admin.php:331
4503
  #: admin/includes/uninstall.php:45
4504
  msgid "BPS Plugin Uninstall Options"
4505
  msgstr ""
4506
 
4507
- #: admin/includes/admin.php:366
4508
  msgid "BPS UI|UX Debug: SLF css Scripts Nulled"
4509
  msgstr ""
4510
 
4511
- #: admin/includes/admin.php:373
4512
  msgid "BPS UI|UX Debug: SLF css Scripts Not Nulled|Allowed"
4513
  msgstr ""
4514
 
4515
- #: admin/includes/admin.php:402
4516
  msgid "BPS UI|UX Debug: SLF js Scripts Nulled"
4517
  msgstr ""
4518
 
4519
- #: admin/includes/admin.php:409
4520
  msgid "BPS UI|UX Debug: SLF js Scripts Not Nulled|Allowed"
4521
  msgstr ""
4522
 
4523
- #: admin/includes/admin.php:485
4524
  msgid "BPS UI|UX Debug: Scripts|Styles Dequeued"
4525
  msgstr ""
4526
 
4527
- #: admin/includes/admin.php:497
4528
  msgid "Script Dequeued: "
4529
  msgstr ""
4530
 
4531
- #: admin/includes/admin.php:503
4532
  msgid ""
4533
  "No plugin or theme Scripts were Dequeued (prevented) from loading in BPS "
4534
  "plugin pages"
4535
  msgstr ""
4536
 
4537
- #: admin/includes/admin.php:515
4538
  msgid "Style Dequeued: "
4539
  msgstr ""
4540
 
4541
- #: admin/includes/admin.php:521
4542
  msgid ""
4543
  "No plugin or theme Styles were Dequeued (prevented) from loading in BPS "
4544
  "plugin pages"
4545
  msgstr ""
4546
 
4547
- #: admin/includes/admin.php:559 admin/includes/admin.php:592
4548
  msgid "BPS UI|UX Debug: WP Toolbar nodes|menu items Removed"
4549
  msgstr ""
4550
 
4551
- #: admin/includes/admin.php:571 admin/includes/admin.php:604
4552
  msgid "WP Toolbar node|menu item Removed: "
4553
  msgstr ""
4554
 
4555
- #: admin/includes/admin.php:579 admin/includes/admin.php:612
4556
  msgid "No WP Toolbar nodes|menu items were Removed in BPS plugin pages"
4557
  msgstr ""
4558
 
@@ -5405,8 +5413,8 @@ msgid ""
5405
  msgstr ""
5406
 
5407
  #: admin/login/lsm-help-text.php:10 admin/maintenance/maintenance.php:542
5408
- #: includes/hud-dismiss-functions.php:341
5409
- #: includes/hud-dismiss-functions.php:384
5410
  msgid "CAUTION: "
5411
  msgstr ""
5412
 
@@ -5699,8 +5707,7 @@ msgid ""
5699
  "You can position the JTC Title|Text Form label and the JTC CAPTCHA Form "
5700
  "Input text box by editing the CSS in these text boxes. By default the "
5701
  "position of the JTC Title|Text label and the JTC CAPTCHA Form Input text box "
5702
- "is below your Comment Form submit button. For CSS code styling examples (see "
5703
- "Forum Help Links at the top of this Read Me help window)."
5704
  msgstr ""
5705
 
5706
  #: admin/login/lsm-help-text.php:19
@@ -6468,9 +6475,9 @@ msgstr ""
6468
 
6469
  #: admin/maintenance/maintenance.php:390 admin/maintenance/maintenance.php:410
6470
  #: admin/wizard/wizard.php:176 includes/general-functions.php:509
6471
- #: includes/hud-dismiss-functions.php:341
6472
- #: includes/hud-dismiss-functions.php:384
6473
- #: includes/hud-dismiss-functions.php:488
6474
  msgid "Click Here"
6475
  msgstr ""
6476
 
@@ -7152,7 +7159,7 @@ msgid ""
7152
  "malware scanners: "
7153
  msgstr ""
7154
 
7155
- #: admin/mscan/mscan.php:124 includes/hud-dismiss-functions.php:672
7156
  msgid "MScan Malware Scanner Guide"
7157
  msgstr ""
7158
 
@@ -7575,8 +7582,8 @@ msgstr ""
7575
  msgid "Delete<br>File"
7576
  msgstr ""
7577
 
7578
- #: admin/mscan/mscan.php:1296 admin/system-info/system-info.php:905
7579
- #: admin/system-info/system-info.php:938
7580
  msgid "File Path"
7581
  msgstr ""
7582
 
@@ -7799,8 +7806,8 @@ msgstr ""
7799
 
7800
  #: admin/mscan/mscan.php:1779
7801
  msgid ""
7802
- "Success! Your DB Backup Log has been deleted and replaced with a new blank "
7803
- "DB Backup Log file."
7804
  msgstr ""
7805
 
7806
  #: admin/mscan/mscan.php:1789
@@ -9125,119 +9132,135 @@ msgstr ""
9125
  msgid "PHP Exif Support"
9126
  msgstr ""
9127
 
 
 
 
 
 
 
 
 
 
 
 
 
9128
  #: admin/system-info/system-info.php:902
 
 
 
 
9129
  msgid "CGI File and Folder Permissions|Recommendations"
9130
  msgstr ""
9131
 
9132
- #: admin/system-info/system-info.php:905 admin/system-info/system-info.php:938
9133
  msgid "Folder Path"
9134
  msgstr ""
9135
 
9136
- #: admin/system-info/system-info.php:906 admin/system-info/system-info.php:939
9137
  msgid "Recommended"
9138
  msgstr ""
9139
 
9140
- #: admin/system-info/system-info.php:906 admin/system-info/system-info.php:907
9141
- #: admin/system-info/system-info.php:939 admin/system-info/system-info.php:940
9142
  msgid "Permissions"
9143
  msgstr ""
9144
 
9145
- #: admin/system-info/system-info.php:907 admin/system-info/system-info.php:940
9146
  msgid "Current"
9147
  msgstr ""
9148
 
9149
- #: admin/system-info/system-info.php:908 admin/system-info/system-info.php:941
9150
  msgid "Script Owner"
9151
  msgstr ""
9152
 
9153
- #: admin/system-info/system-info.php:908 admin/system-info/system-info.php:941
9154
  msgid " User ID (UID)"
9155
  msgstr ""
9156
 
9157
- #: admin/system-info/system-info.php:909 admin/system-info/system-info.php:942
9158
  msgid "File Owner"
9159
  msgstr ""
9160
 
9161
- #: admin/system-info/system-info.php:909 admin/system-info/system-info.php:942
9162
  msgid " User ID"
9163
  msgstr ""
9164
 
9165
- #: admin/system-info/system-info.php:935
9166
  msgid "DSO File and Folder Permissions|Recommendations"
9167
  msgstr ""
9168
 
9169
- #: admin/system-info/system-info.php:970
9170
  msgid "System Info Processing Completion Time: "
9171
  msgstr ""
9172
 
9173
- #: admin/system-info/system-info.php:1003
9174
  msgid "Website Headers Check Tool ~ "
9175
  msgstr ""
9176
 
9177
- #: admin/system-info/system-info.php:1003
9178
  msgid ""
9179
  "Check your website Headers or another website's Headers by making a GET or "
9180
  "HEAD Request"
9181
  msgstr ""
9182
 
9183
- #: admin/system-info/system-info.php:1010
9184
  msgid ""
9185
  "Check your website Headers or another website's Headers by making a GET "
9186
  "Request"
9187
  msgstr ""
9188
 
9189
- #: admin/system-info/system-info.php:1027
9190
  msgid "GET Request Headers: "
9191
  msgstr ""
9192
 
9193
- #: admin/system-info/system-info.php:1042
9194
  msgid ""
9195
  "Error: The WordPress wp_remote_get function is not available or is blocked "
9196
  "on your website/server."
9197
  msgstr ""
9198
 
9199
- #: admin/system-info/system-info.php:1052
9200
- #: admin/system-info/system-info.php:1113
9201
  msgid "Enter a Website URL - Example: "
9202
  msgstr ""
9203
 
9204
- #: admin/system-info/system-info.php:1055
9205
  msgid ""
9206
  "This Headers check makes a GET Request using the WordPress wp_remote_get "
9207
  "function."
9208
  msgstr ""
9209
 
9210
- #: admin/system-info/system-info.php:1055
9211
  msgid ""
9212
  "You can use the Check Headers HEAD Request tool to check headers using HEAD "
9213
  "instead of GET."
9214
  msgstr ""
9215
 
9216
- #: admin/system-info/system-info.php:1061
9217
  msgid ""
9218
  "Check your website Headers or another website's Headers by making a HEAD "
9219
  "Request"
9220
  msgstr ""
9221
 
9222
- #: admin/system-info/system-info.php:1094
9223
  msgid "HEAD Request Headers: "
9224
  msgstr ""
9225
 
9226
- #: admin/system-info/system-info.php:1103
9227
  msgid ""
9228
  "Error: The cURL Headers Check does not work on your website. Either the cURL "
9229
  "Extension is not loaded or one of these functions is disabled in your php."
9230
  "ini file: curl_init, curl_exec and/or curl_setopt."
9231
  msgstr ""
9232
 
9233
- #: admin/system-info/system-info.php:1116
9234
  msgid ""
9235
  "This cURL Headers check makes a HEAD Request and you will see HTTP/1.1 403 "
9236
  "Forbidden displayed if you are blocking HEAD Requests in your BPS root ."
9237
  "htaccess file on your website."
9238
  msgstr ""
9239
 
9240
- #: admin/system-info/system-info.php:1116
9241
  msgid ""
9242
  "Use the Check Headers GET Request tool to check your headers using GET "
9243
  "instead of HEAD. This tool can also be used to check that your Security Log "
@@ -10338,7 +10361,7 @@ msgid ""
10338
  "file, but was NOT found in BPS Custom Code. "
10339
  msgstr ""
10340
 
10341
- #: admin/wizard/wizard.php:176 includes/hud-dismiss-functions.php:341
10342
  msgid ""
10343
  " for the steps to fix this Wordfence problem before running the Setup Wizard."
10344
  msgstr ""
@@ -10964,7 +10987,7 @@ msgstr ""
10964
 
10965
  #: includes/functions.php:345 includes/functions.php:566
10966
  #: includes/functions.php:621 includes/hud-autofix-setup.php:68
10967
- #: includes/hud-dismiss-functions.php:539
10968
  msgid "Go to the "
10969
  msgstr ""
10970
 
@@ -11632,40 +11655,41 @@ msgstr ""
11632
  msgid " and click the Setup Wizard button."
11633
  msgstr ""
11634
 
11635
- #: includes/hud-autofix-setup.php:68 includes/hud-dismiss-functions.php:63
11636
- #: includes/hud-dismiss-functions.php:97 includes/hud-dismiss-functions.php:130
11637
- #: includes/hud-dismiss-functions.php:341
11638
- #: includes/hud-dismiss-functions.php:346
11639
- #: includes/hud-dismiss-functions.php:384
11640
- #: includes/hud-dismiss-functions.php:389
11641
- #: includes/hud-dismiss-functions.php:445
11642
- #: includes/hud-dismiss-functions.php:488
11643
- #: includes/hud-dismiss-functions.php:644
11644
  msgid ""
11645
  "To Dismiss this Notice click the Dismiss Notice button below. To Reset "
11646
  "Dismiss Notices click the Reset|Recheck Dismiss Notices button on the Custom "
11647
  "Code page."
11648
  msgstr ""
11649
 
11650
- #: includes/hud-autofix-setup.php:68 includes/hud-dismiss-functions.php:63
11651
- #: includes/hud-dismiss-functions.php:97 includes/hud-dismiss-functions.php:130
11652
- #: includes/hud-dismiss-functions.php:195
11653
- #: includes/hud-dismiss-functions.php:210
11654
- #: includes/hud-dismiss-functions.php:216
11655
- #: includes/hud-dismiss-functions.php:222
11656
- #: includes/hud-dismiss-functions.php:228
11657
- #: includes/hud-dismiss-functions.php:242
11658
- #: includes/hud-dismiss-functions.php:248
11659
- #: includes/hud-dismiss-functions.php:253
11660
- #: includes/hud-dismiss-functions.php:341
11661
- #: includes/hud-dismiss-functions.php:346
11662
- #: includes/hud-dismiss-functions.php:384
11663
- #: includes/hud-dismiss-functions.php:389
11664
- #: includes/hud-dismiss-functions.php:445
11665
- #: includes/hud-dismiss-functions.php:488
11666
- #: includes/hud-dismiss-functions.php:577
11667
- #: includes/hud-dismiss-functions.php:644
11668
- #: includes/hud-dismiss-functions.php:672
 
11669
  msgid "Dismiss Notice"
11670
  msgstr ""
11671
 
@@ -12232,389 +12256,421 @@ msgstr ""
12232
  msgid "No Plugin or Theme AutoFix Custom Code Whitelist Rules were found"
12233
  msgstr ""
12234
 
12235
- #: includes/hud-dismiss-functions.php:41
12236
  msgid ""
12237
  "WARNING! BPS requires at least PHP5 to function correctly. Your PHP version "
12238
  "is: "
12239
  msgstr ""
12240
 
12241
- #: includes/hud-dismiss-functions.php:41
12242
  msgid "BPS Guide - PHP5 Solution"
12243
  msgstr ""
12244
 
12245
- #: includes/hud-dismiss-functions.php:41
12246
  msgid ""
12247
  "The BPS Guide will open in a new browser window. You will not be directed "
12248
  "away from your WordPress Dashboard."
12249
  msgstr ""
12250
 
12251
- #: includes/hud-dismiss-functions.php:63
12252
  msgid ""
12253
  "WARNING! BPS has detected that Safe Mode is set to On in your php.ini file."
12254
  msgstr ""
12255
 
12256
- #: includes/hud-dismiss-functions.php:63
12257
  msgid ""
12258
  "If you see errors that BPS was unable to automatically create the backup "
12259
  "folders this is probably the reason why."
12260
  msgstr ""
12261
 
12262
- #: includes/hud-dismiss-functions.php:97
12263
  msgid "HUD Check: Custom Permalinks are NOT being used."
12264
  msgstr ""
12265
 
12266
- #: includes/hud-dismiss-functions.php:97
12267
  msgid "It is recommended that you use Custom Permalinks: "
12268
  msgstr ""
12269
 
12270
- #: includes/hud-dismiss-functions.php:97
12271
  msgid "How to setup Custom Permalinks"
12272
  msgstr ""
12273
 
12274
- #: includes/hud-dismiss-functions.php:130
12275
  msgid ""
12276
  "WARNING! BPS has detected that your Server is a Windows IIS Server that does "
12277
  "not support htaccess rewriting."
12278
  msgstr ""
12279
 
12280
- #: includes/hud-dismiss-functions.php:130
12281
  msgid "Do NOT activate BulletProof Modes unless you know what you are doing."
12282
  msgstr ""
12283
 
12284
- #: includes/hud-dismiss-functions.php:130
12285
  msgid "Your Server Type is: "
12286
  msgstr ""
12287
 
12288
- #: includes/hud-dismiss-functions.php:130
12289
  msgid "WordPress Codex - Using Permalinks - see IIS section"
12290
  msgstr ""
12291
 
12292
- #: includes/hud-dismiss-functions.php:153
12293
- #: includes/hud-dismiss-functions.php:158
12294
  msgid "WARNING! BPS was unable to automatically create the /"
12295
  msgstr ""
12296
 
12297
- #: includes/hud-dismiss-functions.php:153
12298
  msgid "/bps-backup folder."
12299
  msgstr ""
12300
 
12301
- #: includes/hud-dismiss-functions.php:153
12302
- #: includes/hud-dismiss-functions.php:158
12303
  msgid "You will need to create the /"
12304
  msgstr ""
12305
 
12306
- #: includes/hud-dismiss-functions.php:153
12307
  msgid ""
12308
  "/bps-backup folder manually via FTP. The folder permissions for the bps-"
12309
  "backup folder need to be set to 755 in order to successfully perform "
12310
  "permanent online backups."
12311
  msgstr ""
12312
 
12313
- #: includes/hud-dismiss-functions.php:153
12314
- #: includes/hud-dismiss-functions.php:158
12315
  msgid "To remove this message permanently click "
12316
  msgstr ""
12317
 
12318
- #: includes/hud-dismiss-functions.php:153
12319
- #: includes/hud-dismiss-functions.php:158
12320
  msgid "here."
12321
  msgstr ""
12322
 
12323
- #: includes/hud-dismiss-functions.php:158
12324
  msgid "/bps-backup/master-backups folder."
12325
  msgstr ""
12326
 
12327
- #: includes/hud-dismiss-functions.php:158
12328
  msgid ""
12329
  "/bps-backup/master-backups folder manually via FTP. The folder permissions "
12330
  "for the master-backups folder need to be set to 755 in order to successfully "
12331
  "perform permanent online backups."
12332
  msgstr ""
12333
 
12334
- #: includes/hud-dismiss-functions.php:192
12335
- #: includes/hud-dismiss-functions.php:204
12336
  msgid "Bonus Custom Code:"
12337
  msgstr ""
12338
 
12339
- #: includes/hud-dismiss-functions.php:192
12340
- #: includes/hud-dismiss-functions.php:204
12341
  msgid ""
12342
  "Click the links below to get Bonus Custom Code or click the Dismiss Notice "
12343
  "links or click this "
12344
  msgstr ""
12345
 
12346
- #: includes/hud-dismiss-functions.php:192
12347
- #: includes/hud-dismiss-functions.php:204
12348
  msgid "Dismiss All Notices"
12349
  msgstr ""
12350
 
12351
- #: includes/hud-dismiss-functions.php:192
12352
- #: includes/hud-dismiss-functions.php:204
12353
  msgid ""
12354
  " link. To Reset Dismiss Notices click the Reset|Recheck Dismiss Notices "
12355
  "button on the Custom Code page."
12356
  msgstr ""
12357
 
12358
- #: includes/hud-dismiss-functions.php:195
12359
- #: includes/hud-dismiss-functions.php:210
12360
- #: includes/hud-dismiss-functions.php:216
12361
- #: includes/hud-dismiss-functions.php:222
12362
- #: includes/hud-dismiss-functions.php:228
12363
- #: includes/hud-dismiss-functions.php:242
12364
- #: includes/hud-dismiss-functions.php:248
12365
- #: includes/hud-dismiss-functions.php:253
12366
  msgid "Get "
12367
  msgstr ""
12368
 
12369
- #: includes/hud-dismiss-functions.php:195
12370
- #: includes/hud-dismiss-functions.php:242
12371
  msgid "POST Request Attack Protection Code"
12372
  msgstr ""
12373
 
12374
- #: includes/hud-dismiss-functions.php:195
12375
- #: includes/hud-dismiss-functions.php:210
12376
- #: includes/hud-dismiss-functions.php:216
12377
- #: includes/hud-dismiss-functions.php:222
12378
- #: includes/hud-dismiss-functions.php:228
12379
- #: includes/hud-dismiss-functions.php:242
12380
- #: includes/hud-dismiss-functions.php:248
12381
- #: includes/hud-dismiss-functions.php:253
12382
  msgid " or "
12383
  msgstr ""
12384
 
12385
- #: includes/hud-dismiss-functions.php:210
12386
  msgid "Brute Force Login Protection Code"
12387
  msgstr ""
12388
 
12389
- #: includes/hud-dismiss-functions.php:216
12390
  msgid "Speed Boost Cache Code"
12391
  msgstr ""
12392
 
12393
- #: includes/hud-dismiss-functions.php:222
12394
  msgid "Author Enumeration BOT Probe Code"
12395
  msgstr ""
12396
 
12397
- #: includes/hud-dismiss-functions.php:228
12398
  msgid "XML-RPC DDoS Protection Code"
12399
  msgstr ""
12400
 
12401
- #: includes/hud-dismiss-functions.php:248
12402
  msgid "Mime Sniffing|Drive-by Download Attack Protection Code"
12403
  msgstr ""
12404
 
12405
- #: includes/hud-dismiss-functions.php:253
12406
  msgid "External iFrame|Clickjacking Protection Code"
12407
  msgstr ""
12408
 
12409
- #: includes/hud-dismiss-functions.php:341
12410
- #: includes/hud-dismiss-functions.php:384
12411
  msgid "HUD Check: Wordfence PHP/php.ini handler htaccess code detected"
12412
  msgstr ""
12413
 
12414
- #: includes/hud-dismiss-functions.php:341
12415
- #: includes/hud-dismiss-functions.php:384
12416
  msgid ""
12417
  "Wordfence PHP/php.ini handler htaccess code was found in your root .htaccess "
12418
  "file, but was NOT found in BPS Custom Code."
12419
  msgstr ""
12420
 
12421
- #: includes/hud-dismiss-functions.php:341
12422
- #: includes/hud-dismiss-functions.php:384
12423
  msgid ""
12424
  "Using the Wordfence WAF Firewall may cause serious/critical problems for "
12425
  "your website and BPS."
12426
  msgstr ""
12427
 
12428
- #: includes/hud-dismiss-functions.php:346
12429
- #: includes/hud-dismiss-functions.php:389
12430
  msgid "HUD Check: PHP/php.ini handler htaccess code check"
12431
  msgstr ""
12432
 
12433
- #: includes/hud-dismiss-functions.php:346
12434
- #: includes/hud-dismiss-functions.php:389
12435
  msgid ""
12436
  "PHP/php.ini handler htaccess code was found in your root .htaccess file, but "
12437
  "was NOT found in BPS Custom Code."
12438
  msgstr ""
12439
 
12440
- #: includes/hud-dismiss-functions.php:346
12441
- #: includes/hud-dismiss-functions.php:389
12442
  msgid "To automatically fix this click here: "
12443
  msgstr ""
12444
 
12445
- #: includes/hud-dismiss-functions.php:346
12446
- #: includes/hud-dismiss-functions.php:389
12447
  msgid ""
12448
  "The Setup Wizard Pre-Installation Checks feature will automatically fix this "
12449
  "just by visiting the Setup Wizard page."
12450
  msgstr ""
12451
 
12452
- #: includes/hud-dismiss-functions.php:384
12453
  msgid " for the steps to fix this Wordfence problem."
12454
  msgstr ""
12455
 
12456
- #: includes/hud-dismiss-functions.php:445
12457
  msgid "Sucuri Restrict wp-content access Hardening Option problem detected"
12458
  msgstr ""
12459
 
12460
- #: includes/hud-dismiss-functions.php:445
12461
  msgid ""
12462
  "Using the Sucuri Restrict wp-content access Hardening Option breaks BPS "
12463
  "Security Logging, Plugin Firewall, Uploads Anti-Exploit Guard & probably "
12464
  "other things in BPS and other plugins as well."
12465
  msgstr ""
12466
 
12467
- #: includes/hud-dismiss-functions.php:445
12468
  msgid "To fix this problem click this link: "
12469
  msgstr ""
12470
 
12471
- #: includes/hud-dismiss-functions.php:445
12472
  msgid "Sucuri Hardening Options"
12473
  msgstr ""
12474
 
12475
- #: includes/hud-dismiss-functions.php:445
12476
  msgid ""
12477
  " and click the Sucuri Restrict wp-content access Revert hardening button."
12478
  msgstr ""
12479
 
12480
- #: includes/hud-dismiss-functions.php:488
12481
  msgid "The WordPress Firewall 2 plugin is installed and activated"
12482
  msgstr ""
12483
 
12484
- #: includes/hud-dismiss-functions.php:488
12485
  msgid "It is recommended that you delete the WordPress Firewall 2 plugin."
12486
  msgstr ""
12487
 
12488
- #: includes/hud-dismiss-functions.php:488
12489
  msgid " for more information."
12490
  msgstr ""
12491
 
12492
- #: includes/hud-dismiss-functions.php:520
12493
  msgid "Notice: BPS Query String Exploits Code Changes"
12494
  msgstr ""
12495
 
12496
- #: includes/hud-dismiss-functions.php:520
12497
  msgid ""
12498
  "Older BPS Query String Exploits code was found in BPS Custom Code. Several "
12499
  "Query String Exploits rules were changed/added/modified in the root ."
12500
  "htaccess file in BPS .49.6, .50.2 & .50.3."
12501
  msgstr ""
12502
 
12503
- #: includes/hud-dismiss-functions.php:520
12504
  msgid ""
12505
  "Copy the new Query String Exploits section of code from your root .htaccess "
12506
  "file and paste it into this BPS Custom Code text box: CUSTOM CODE BPSQSE BPS "
12507
  "QUERY STRING EXPLOITS and click the Save Root Custom Code button."
12508
  msgstr ""
12509
 
12510
- #: includes/hud-dismiss-functions.php:520
12511
  msgid ""
12512
  "This Notice will go away once you have copied the new Query String Exploits "
12513
  "code to BPS Custom Code and clicked the Save Root Custom Code button."
12514
  msgstr ""
12515
 
12516
- #: includes/hud-dismiss-functions.php:539
12517
  msgid "BPS Alert! A BPS htaccess file was NOT found in the BPS Backup folder: "
12518
  msgstr ""
12519
 
12520
- #: includes/hud-dismiss-functions.php:539
12521
  msgid " and click the BPS Backup Folder BulletProof Mode Activate button."
12522
  msgstr ""
12523
 
12524
- #: includes/hud-dismiss-functions.php:577
12525
  msgid "New Improved BPS Speed Boost Cache Code"
12526
  msgstr ""
12527
 
12528
- #: includes/hud-dismiss-functions.php:577
12529
  msgid ""
12530
  "Older BPS Speed Boost Cache Code was found saved in this BPS Custom Code "
12531
  "text box: CUSTOM CODE TOP PHP/PHP.INI HANDLER/CACHE CODE"
12532
  msgstr ""
12533
 
12534
- #: includes/hud-dismiss-functions.php:577
12535
  msgid ""
12536
  "Newer improved BPS Speed Boost Cache Code has been created, which should "
12537
  "improve website load speed performance even more."
12538
  msgstr ""
12539
 
12540
- #: includes/hud-dismiss-functions.php:577
12541
  msgid "Get The New Improved BPS Speed Boost Cache Code"
12542
  msgstr ""
12543
 
12544
- #: includes/hud-dismiss-functions.php:577
12545
  msgid ". To dismiss this Notice click the Dismiss Notice button below."
12546
  msgstr ""
12547
 
12548
- #: includes/hud-dismiss-functions.php:577
12549
  msgid ""
12550
  "To Reset Dismiss Notices click the Reset|Recheck Dismiss Notices button on "
12551
  "the Custom Code page."
12552
  msgstr ""
12553
 
12554
- #: includes/hud-dismiss-functions.php:584
12555
  msgid "BPS Speed Boost Cache Custom Code Notice"
12556
  msgstr ""
12557
 
12558
- #: includes/hud-dismiss-functions.php:584
12559
  msgid ""
12560
  "BPS Speed Boost Cache Code was found in this BPS Custom Code text box: "
12561
  "CUSTOM CODE TOP PHP/PHP.INI HANDLER/CACHE CODE"
12562
  msgstr ""
12563
 
12564
- #: includes/hud-dismiss-functions.php:584
12565
  msgid ""
12566
  "and another caching plugin's Marker text was also found in this BPS Custom "
12567
  "Code text box."
12568
  msgstr ""
12569
 
12570
- #: includes/hud-dismiss-functions.php:584
12571
  msgid "Click this link: "
12572
  msgstr ""
12573
 
12574
- #: includes/hud-dismiss-functions.php:584
12575
  msgid "BPS Speed Boost Cache Custom Code Notice Forum Topic"
12576
  msgstr ""
12577
 
12578
- #: includes/hud-dismiss-functions.php:584
12579
  msgid " for help information on what this Notice means and what to do next."
12580
  msgstr ""
12581
 
12582
- #: includes/hud-dismiss-functions.php:644
12583
  msgid "BPS Plugin Automatic Update Notice"
12584
  msgstr ""
12585
 
12586
- #: includes/hud-dismiss-functions.php:644
12587
  msgid ""
12588
  "Would you like to have BPS plugin updates installed automatically? Click "
12589
  "this link: "
12590
  msgstr ""
12591
 
12592
- #: includes/hud-dismiss-functions.php:644
12593
  msgid " and click the BPS MU Tools Enable BPS Plugin AutoUpdates link."
12594
  msgstr ""
12595
 
12596
- #: includes/hud-dismiss-functions.php:672
12597
  msgid "MScan First Run Notice"
12598
  msgstr ""
12599
 
12600
- #: includes/hud-dismiss-functions.php:672
12601
  msgid ""
12602
  "Please take a few minutes to read the \"Basic Info|Recommendations|"
12603
  "Limitations|Restrictions\" help section in the"
12604
  msgstr ""
12605
 
12606
- #: includes/hud-dismiss-functions.php:672
12607
  msgid "before running a scan."
12608
  msgstr ""
12609
 
12610
- #: includes/hud-dismiss-functions.php:672
12611
  msgid ""
12612
  "It is highly recommended that you use the Scan Time Estimate Tool before "
12613
  "running an actual scan. The Scan Time Estimate Tool calculates the total "
12614
  "estimated time of a scan based on your MScan Option settings without "
12615
  "actually running a scan. To Dismiss this Notice click the Dismiss Notice "
12616
  "button below. To Reset Dismiss Notices click the Reset|Recheck Dismiss "
12617
- "Notices button on the Custom Code page."
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
12618
  msgstr ""
12619
 
12620
  #: includes/login-security.php:115 includes/login-security.php:121
@@ -12623,10 +12679,10 @@ msgstr ""
12623
  #: includes/login-security.php:708 includes/login-security.php:714
12624
  #: includes/login-security.php:718 includes/login-security.php:724
12625
  #: includes/login-security.php:728 includes/login-security.php:738
12626
- #: includes/login-security.php:746 includes/login-security.php:750
12627
- #: includes/login-security.php:757 includes/login-security.php:761
12628
- #: includes/login-security.php:771 includes/login-security.php:775
12629
- #: includes/login-security.php:784 includes/login-security.php:788
12630
  msgid "ERROR:"
12631
  msgstr ""
12632
 
@@ -12644,8 +12700,8 @@ msgstr ""
12644
 
12645
  #: includes/login-security.php:121 includes/login-security.php:464
12646
  #: includes/login-security.php:724 includes/login-security.php:728
12647
- #: includes/login-security.php:771 includes/login-security.php:775
12648
- #: includes/login-security.php:784 includes/login-security.php:788
12649
  msgid " Invalid Entry."
12650
  msgstr ""
12651
 
@@ -12653,15 +12709,15 @@ msgstr ""
12653
  #: includes/login-security.php:708 includes/login-security.php:714
12654
  #: includes/login-security.php:718 includes/login-security.php:724
12655
  #: includes/login-security.php:728 includes/login-security.php:738
12656
- #: includes/login-security.php:746 includes/login-security.php:750
12657
- #: includes/login-security.php:757 includes/login-security.php:761
12658
- #: includes/login-security.php:771 includes/login-security.php:775
12659
- #: includes/login-security.php:784 includes/login-security.php:788
12660
  msgid "Lost your password?"
12661
  msgstr ""
12662
 
12663
  #: includes/login-security.php:130 includes/login-security.php:473
12664
- #: includes/login-security.php:908
12665
  msgid "<strong>ERROR</strong>: Incorrect CAPTCHA Entered."
12666
  msgstr ""
12667
 
@@ -12821,23 +12877,23 @@ msgstr ""
12821
  msgid " Invalid email address."
12822
  msgstr ""
12823
 
12824
- #: includes/login-security.php:738 includes/login-security.php:750
12825
- #: includes/login-security.php:761
12826
  msgid " The password you entered for the username "
12827
  msgstr ""
12828
 
12829
- #: includes/login-security.php:738 includes/login-security.php:746
12830
- #: includes/login-security.php:750 includes/login-security.php:757
12831
- #: includes/login-security.php:761
12832
  msgid " is incorrect. "
12833
  msgstr ""
12834
 
12835
- #: includes/login-security.php:746 includes/login-security.php:757
12836
  msgid " The password you entered for the email address "
12837
  msgstr ""
12838
 
12839
- #: includes/login-security.php:746 includes/login-security.php:750
12840
- #: includes/login-security.php:771 includes/login-security.php:784
12841
  msgid " Login Attempts Remaining "
12842
  msgstr ""
12843
 
3
  msgstr ""
4
  "Project-Id-Version: bulletproof-security\n"
5
  "Report-Msgid-Bugs-To: \n"
6
+ "POT-Creation-Date: 2017-10-23 14:19-0700\n"
7
  "PO-Revision-Date: 2015-06-20 19:13-0800\n"
8
  "Last-Translator: Ed Alexander <edward@ait-pro.com>\n"
9
  "Language-Team: AITpro <info@ait-pro.com>\n"
751
  msgid "Success! The MScan First Run Notice is reset."
752
  msgstr ""
753
 
754
+ #: admin/core/core-forms.php:650
755
+ msgid "The JTC-Lite New Feature Notice is NOT set. Nothing to reset."
756
+ msgstr ""
757
+
758
+ #: admin/core/core-forms.php:653
759
+ msgid "Success! The JTC-Lite New Feature Notice is reset."
760
+ msgstr ""
761
+
762
+ #: admin/core/core-forms.php:657
763
  msgid "Refresh Status"
764
  msgstr ""
765
 
1605
  msgid "Rate BPS"
1606
  msgstr ""
1607
 
1608
+ #: admin/core/core.php:126 admin/includes/admin.php:302
1609
+ #: admin/includes/admin.php:303
1610
  msgid "BulletProof Security ~ htaccess Core"
1611
  msgstr ""
1612
 
1716
  #: admin/core/core.php:1500 admin/core/core.php:1517 admin/login/login.php:142
1717
  #: admin/login/login.php:199 admin/login/login.php:877
1718
  #: admin/login/login.php:1021 admin/system-info/system-info.php:116
1719
+ #: admin/system-info/system-info.php:1021
1720
  msgid "Permission Denied"
1721
  msgstr ""
1722
 
1908
  #: admin/security-log/security-log.php:465
1909
  #: admin/security-log/security-log.php:480
1910
  #: admin/security-log/security-log.php:698
1911
+ #: admin/system-info/system-info.php:1077
1912
+ #: admin/system-info/system-info.php:1138
1913
  msgid "Click OK to proceed or click Cancel."
1914
  msgstr ""
1915
 
2455
  #: admin/core/core.php:1639 admin/email-log-settings/email-log-settings.php:221
2456
  #: admin/login/login.php:1357 admin/maintenance/maintenance.php:2097
2457
  #: admin/security-log/security-log.php:806
2458
+ #: admin/system-info/system-info.php:1157
2459
  msgid "Contributors Page"
2460
  msgstr ""
2461
 
2466
  #: admin/core/core.php:1641 admin/email-log-settings/email-log-settings.php:220
2467
  #: admin/login/login.php:1356 admin/maintenance/maintenance.php:2098
2468
  #: admin/security-log/security-log.php:805
2469
+ #: admin/system-info/system-info.php:1156
2470
  msgid "Security Log Event Codes"
2471
  msgstr ""
2472
 
2479
  #: admin/email-log-settings/email-log-settings.php:222
2480
  #: admin/login/login.php:1358 admin/maintenance/maintenance.php:2099
2481
  #: admin/mscan/mscan.php:1901 admin/security-log/security-log.php:807
2482
+ #: admin/system-info/system-info.php:1158 admin/theme-skin/theme-skin.php:222
2483
  msgid "Forum: Search, Troubleshooting Steps & Post Questions For Assistance"
2484
  msgstr ""
2485
 
3413
  #: admin/db-backup-security/db-backup-security.php:259
3414
  #: admin/db-backup-security/db-backup-security.php:276
3415
  #: admin/db-backup-security/db-backup-security.php:278
3416
+ #: admin/includes/admin.php:308
3417
  msgid "DB Backup"
3418
  msgstr ""
3419
 
4275
 
4276
  #: admin/email-log-settings/email-log-settings.php:102
4277
  #: admin/email-log-settings/email-log-settings.php:104
4278
+ #: admin/includes/admin.php:319
4279
  msgid "Email|Log Settings"
4280
  msgstr ""
4281
 
4426
 
4427
  #: admin/email-log-settings/email-log-settings.php:216
4428
  #: admin/login/login.php:1352 admin/security-log/security-log.php:801
4429
+ #: admin/system-info/system-info.php:1153
4430
  msgid "BulletProof Security Help &amp; FAQ"
4431
  msgstr ""
4432
 
4433
+ #: admin/includes/admin.php:286
4434
  msgid "BulletProof Security Settings"
4435
  msgstr ""
4436
 
4437
+ #: admin/includes/admin.php:286 admin/includes/admin.php:302
4438
  msgid "BPS Security"
4439
  msgstr ""
4440
 
4441
+ #: admin/includes/admin.php:287 admin/includes/admin.php:288
4442
  msgid "Login Security ~ JTC-Lite"
4443
  msgstr ""
4444
 
4445
+ #: admin/includes/admin.php:287 admin/includes/admin.php:305
4446
  msgid "Login Security"
4447
  msgstr ""
4448
 
4449
+ #: admin/includes/admin.php:288 admin/includes/admin.php:306
4450
  #: admin/login/login.php:158 admin/login/login.php:806
4451
  #: admin/login/login.php:808
4452
  msgid "JTC-Lite"
4453
  msgstr ""
4454
 
4455
+ #: admin/includes/admin.php:294 admin/includes/admin.php:315
4456
  #: admin/maintenance/maintenance.php:163 admin/maintenance/maintenance.php:195
4457
  #: admin/maintenance/maintenance.php:197
4458
  msgid "Maintenance Mode"
4459
  msgstr ""
4460
 
4461
+ #: admin/includes/admin.php:297 admin/includes/admin.php:318
4462
  #: admin/system-info/system-info.php:88
4463
  msgid "System Info"
4464
  msgstr ""
4465
 
4466
+ #: admin/includes/admin.php:298 admin/includes/admin.php:320
4467
  #: admin/theme-skin/theme-skin.php:91 admin/theme-skin/theme-skin.php:107
4468
  #: admin/theme-skin/theme-skin.php:109
4469
  msgid "UI|UX Settings"
4470
  msgstr ""
4471
 
4472
+ #: admin/includes/admin.php:303
4473
  msgid "htaccess Core"
4474
  msgstr ""
4475
 
4476
+ #: admin/includes/admin.php:304
4477
  msgid "MScan ~ Malware Scanner"
4478
  msgstr ""
4479
 
4480
+ #: admin/includes/admin.php:304 admin/mscan/mscan.php:98
4481
  #: admin/mscan/mscan.php:114 admin/mscan/mscan.php:116
4482
  msgid "MScan"
4483
  msgstr ""
4484
 
4485
+ #: admin/includes/admin.php:305 admin/includes/admin.php:306
4486
+ #: admin/includes/admin.php:307
4487
  msgid "Login Security ~ JTC-Lite ~ ISL ~ ACE"
4488
  msgstr ""
4489
 
4490
+ #: admin/includes/admin.php:307
4491
  msgid "Idle Session Logout<br>Cookie Expiration"
4492
  msgstr ""
4493
 
4494
+ #: admin/includes/admin.php:308
4495
  msgid "DB Backup & Security"
4496
  msgstr ""
4497
 
4498
+ #: admin/includes/admin.php:309 admin/security-log/security-log.php:226
4499
  #: admin/security-log/security-log.php:241
4500
  #: admin/security-log/security-log.php:243
4501
  msgid "Security Log"
4502
  msgstr ""
4503
 
4504
+ #: admin/includes/admin.php:321 admin/wizard/wizard.php:974
4505
  #: admin/wizard/wizard.php:1004 admin/wizard/wizard.php:1006
4506
  #: bulletproof-security.php:100 bulletproof-security.php:103
4507
  msgid "Setup Wizard"
4508
  msgstr ""
4509
 
4510
+ #: admin/includes/admin.php:324 admin/includes/admin.php:332
4511
  #: admin/includes/uninstall.php:45
4512
  msgid "BPS Plugin Uninstall Options"
4513
  msgstr ""
4514
 
4515
+ #: admin/includes/admin.php:367
4516
  msgid "BPS UI|UX Debug: SLF css Scripts Nulled"
4517
  msgstr ""
4518
 
4519
+ #: admin/includes/admin.php:374
4520
  msgid "BPS UI|UX Debug: SLF css Scripts Not Nulled|Allowed"
4521
  msgstr ""
4522
 
4523
+ #: admin/includes/admin.php:403
4524
  msgid "BPS UI|UX Debug: SLF js Scripts Nulled"
4525
  msgstr ""
4526
 
4527
+ #: admin/includes/admin.php:410
4528
  msgid "BPS UI|UX Debug: SLF js Scripts Not Nulled|Allowed"
4529
  msgstr ""
4530
 
4531
+ #: admin/includes/admin.php:486
4532
  msgid "BPS UI|UX Debug: Scripts|Styles Dequeued"
4533
  msgstr ""
4534
 
4535
+ #: admin/includes/admin.php:498
4536
  msgid "Script Dequeued: "
4537
  msgstr ""
4538
 
4539
+ #: admin/includes/admin.php:504
4540
  msgid ""
4541
  "No plugin or theme Scripts were Dequeued (prevented) from loading in BPS "
4542
  "plugin pages"
4543
  msgstr ""
4544
 
4545
+ #: admin/includes/admin.php:516
4546
  msgid "Style Dequeued: "
4547
  msgstr ""
4548
 
4549
+ #: admin/includes/admin.php:522
4550
  msgid ""
4551
  "No plugin or theme Styles were Dequeued (prevented) from loading in BPS "
4552
  "plugin pages"
4553
  msgstr ""
4554
 
4555
+ #: admin/includes/admin.php:560 admin/includes/admin.php:593
4556
  msgid "BPS UI|UX Debug: WP Toolbar nodes|menu items Removed"
4557
  msgstr ""
4558
 
4559
+ #: admin/includes/admin.php:572 admin/includes/admin.php:605
4560
  msgid "WP Toolbar node|menu item Removed: "
4561
  msgstr ""
4562
 
4563
+ #: admin/includes/admin.php:580 admin/includes/admin.php:613
4564
  msgid "No WP Toolbar nodes|menu items were Removed in BPS plugin pages"
4565
  msgstr ""
4566
 
5413
  msgstr ""
5414
 
5415
  #: admin/login/lsm-help-text.php:10 admin/maintenance/maintenance.php:542
5416
+ #: includes/hud-dismiss-functions.php:342
5417
+ #: includes/hud-dismiss-functions.php:385
5418
  msgid "CAUTION: "
5419
  msgstr ""
5420
 
5707
  "You can position the JTC Title|Text Form label and the JTC CAPTCHA Form "
5708
  "Input text box by editing the CSS in these text boxes. By default the "
5709
  "position of the JTC Title|Text label and the JTC CAPTCHA Form Input text box "
5710
+ "is below your Comment Form submit button. For CSS code styling examples."
 
5711
  msgstr ""
5712
 
5713
  #: admin/login/lsm-help-text.php:19
6475
 
6476
  #: admin/maintenance/maintenance.php:390 admin/maintenance/maintenance.php:410
6477
  #: admin/wizard/wizard.php:176 includes/general-functions.php:509
6478
+ #: includes/hud-dismiss-functions.php:342
6479
+ #: includes/hud-dismiss-functions.php:385
6480
+ #: includes/hud-dismiss-functions.php:489
6481
  msgid "Click Here"
6482
  msgstr ""
6483
 
7159
  "malware scanners: "
7160
  msgstr ""
7161
 
7162
+ #: admin/mscan/mscan.php:124 includes/hud-dismiss-functions.php:673
7163
  msgid "MScan Malware Scanner Guide"
7164
  msgstr ""
7165
 
7582
  msgid "Delete<br>File"
7583
  msgstr ""
7584
 
7585
+ #: admin/mscan/mscan.php:1296 admin/system-info/system-info.php:927
7586
+ #: admin/system-info/system-info.php:960
7587
  msgid "File Path"
7588
  msgstr ""
7589
 
7806
 
7807
  #: admin/mscan/mscan.php:1779
7808
  msgid ""
7809
+ "Success! Your MScan Log has been deleted and replaced with a new blank MScan "
7810
+ "Log file."
7811
  msgstr ""
7812
 
7813
  #: admin/mscan/mscan.php:1789
9132
  msgid "PHP Exif Support"
9133
  msgstr ""
9134
 
9135
+ #: admin/system-info/system-info.php:889
9136
+ msgid "PHP Disable Functions"
9137
+ msgstr ""
9138
+
9139
+ #: admin/system-info/system-info.php:893
9140
+ msgid "No PHP functions are disabled."
9141
+ msgstr ""
9142
+
9143
+ #: admin/system-info/system-info.php:898
9144
+ msgid "PHP Suhosin Function Blacklist"
9145
+ msgstr ""
9146
+
9147
  #: admin/system-info/system-info.php:902
9148
+ msgid "No PHP functions are blacklisted."
9149
+ msgstr ""
9150
+
9151
+ #: admin/system-info/system-info.php:924
9152
  msgid "CGI File and Folder Permissions|Recommendations"
9153
  msgstr ""
9154
 
9155
+ #: admin/system-info/system-info.php:927 admin/system-info/system-info.php:960
9156
  msgid "Folder Path"
9157
  msgstr ""
9158
 
9159
+ #: admin/system-info/system-info.php:928 admin/system-info/system-info.php:961
9160
  msgid "Recommended"
9161
  msgstr ""
9162
 
9163
+ #: admin/system-info/system-info.php:928 admin/system-info/system-info.php:929
9164
+ #: admin/system-info/system-info.php:961 admin/system-info/system-info.php:962
9165
  msgid "Permissions"
9166
  msgstr ""
9167
 
9168
+ #: admin/system-info/system-info.php:929 admin/system-info/system-info.php:962
9169
  msgid "Current"
9170
  msgstr ""
9171
 
9172
+ #: admin/system-info/system-info.php:930 admin/system-info/system-info.php:963
9173
  msgid "Script Owner"
9174
  msgstr ""
9175
 
9176
+ #: admin/system-info/system-info.php:930 admin/system-info/system-info.php:963
9177
  msgid " User ID (UID)"
9178
  msgstr ""
9179
 
9180
+ #: admin/system-info/system-info.php:931 admin/system-info/system-info.php:964
9181
  msgid "File Owner"
9182
  msgstr ""
9183
 
9184
+ #: admin/system-info/system-info.php:931 admin/system-info/system-info.php:964
9185
  msgid " User ID"
9186
  msgstr ""
9187
 
9188
+ #: admin/system-info/system-info.php:957
9189
  msgid "DSO File and Folder Permissions|Recommendations"
9190
  msgstr ""
9191
 
9192
+ #: admin/system-info/system-info.php:992
9193
  msgid "System Info Processing Completion Time: "
9194
  msgstr ""
9195
 
9196
+ #: admin/system-info/system-info.php:1025
9197
  msgid "Website Headers Check Tool ~ "
9198
  msgstr ""
9199
 
9200
+ #: admin/system-info/system-info.php:1025
9201
  msgid ""
9202
  "Check your website Headers or another website's Headers by making a GET or "
9203
  "HEAD Request"
9204
  msgstr ""
9205
 
9206
+ #: admin/system-info/system-info.php:1032
9207
  msgid ""
9208
  "Check your website Headers or another website's Headers by making a GET "
9209
  "Request"
9210
  msgstr ""
9211
 
9212
+ #: admin/system-info/system-info.php:1049
9213
  msgid "GET Request Headers: "
9214
  msgstr ""
9215
 
9216
+ #: admin/system-info/system-info.php:1064
9217
  msgid ""
9218
  "Error: The WordPress wp_remote_get function is not available or is blocked "
9219
  "on your website/server."
9220
  msgstr ""
9221
 
9222
+ #: admin/system-info/system-info.php:1074
9223
+ #: admin/system-info/system-info.php:1135
9224
  msgid "Enter a Website URL - Example: "
9225
  msgstr ""
9226
 
9227
+ #: admin/system-info/system-info.php:1077
9228
  msgid ""
9229
  "This Headers check makes a GET Request using the WordPress wp_remote_get "
9230
  "function."
9231
  msgstr ""
9232
 
9233
+ #: admin/system-info/system-info.php:1077
9234
  msgid ""
9235
  "You can use the Check Headers HEAD Request tool to check headers using HEAD "
9236
  "instead of GET."
9237
  msgstr ""
9238
 
9239
+ #: admin/system-info/system-info.php:1083
9240
  msgid ""
9241
  "Check your website Headers or another website's Headers by making a HEAD "
9242
  "Request"
9243
  msgstr ""
9244
 
9245
+ #: admin/system-info/system-info.php:1116
9246
  msgid "HEAD Request Headers: "
9247
  msgstr ""
9248
 
9249
+ #: admin/system-info/system-info.php:1125
9250
  msgid ""
9251
  "Error: The cURL Headers Check does not work on your website. Either the cURL "
9252
  "Extension is not loaded or one of these functions is disabled in your php."
9253
  "ini file: curl_init, curl_exec and/or curl_setopt."
9254
  msgstr ""
9255
 
9256
+ #: admin/system-info/system-info.php:1138
9257
  msgid ""
9258
  "This cURL Headers check makes a HEAD Request and you will see HTTP/1.1 403 "
9259
  "Forbidden displayed if you are blocking HEAD Requests in your BPS root ."
9260
  "htaccess file on your website."
9261
  msgstr ""
9262
 
9263
+ #: admin/system-info/system-info.php:1138
9264
  msgid ""
9265
  "Use the Check Headers GET Request tool to check your headers using GET "
9266
  "instead of HEAD. This tool can also be used to check that your Security Log "
10361
  "file, but was NOT found in BPS Custom Code. "
10362
  msgstr ""
10363
 
10364
+ #: admin/wizard/wizard.php:176 includes/hud-dismiss-functions.php:342
10365
  msgid ""
10366
  " for the steps to fix this Wordfence problem before running the Setup Wizard."
10367
  msgstr ""
10987
 
10988
  #: includes/functions.php:345 includes/functions.php:566
10989
  #: includes/functions.php:621 includes/hud-autofix-setup.php:68
10990
+ #: includes/hud-dismiss-functions.php:540
10991
  msgid "Go to the "
10992
  msgstr ""
10993
 
11655
  msgid " and click the Setup Wizard button."
11656
  msgstr ""
11657
 
11658
+ #: includes/hud-autofix-setup.php:68 includes/hud-dismiss-functions.php:64
11659
+ #: includes/hud-dismiss-functions.php:98 includes/hud-dismiss-functions.php:131
11660
+ #: includes/hud-dismiss-functions.php:342
11661
+ #: includes/hud-dismiss-functions.php:347
11662
+ #: includes/hud-dismiss-functions.php:385
11663
+ #: includes/hud-dismiss-functions.php:390
11664
+ #: includes/hud-dismiss-functions.php:446
11665
+ #: includes/hud-dismiss-functions.php:489
11666
+ #: includes/hud-dismiss-functions.php:645
11667
  msgid ""
11668
  "To Dismiss this Notice click the Dismiss Notice button below. To Reset "
11669
  "Dismiss Notices click the Reset|Recheck Dismiss Notices button on the Custom "
11670
  "Code page."
11671
  msgstr ""
11672
 
11673
+ #: includes/hud-autofix-setup.php:68 includes/hud-dismiss-functions.php:64
11674
+ #: includes/hud-dismiss-functions.php:98 includes/hud-dismiss-functions.php:131
11675
+ #: includes/hud-dismiss-functions.php:196
11676
+ #: includes/hud-dismiss-functions.php:211
11677
+ #: includes/hud-dismiss-functions.php:217
11678
+ #: includes/hud-dismiss-functions.php:223
11679
+ #: includes/hud-dismiss-functions.php:229
11680
+ #: includes/hud-dismiss-functions.php:243
11681
+ #: includes/hud-dismiss-functions.php:249
11682
+ #: includes/hud-dismiss-functions.php:254
11683
+ #: includes/hud-dismiss-functions.php:342
11684
+ #: includes/hud-dismiss-functions.php:347
11685
+ #: includes/hud-dismiss-functions.php:385
11686
+ #: includes/hud-dismiss-functions.php:390
11687
+ #: includes/hud-dismiss-functions.php:446
11688
+ #: includes/hud-dismiss-functions.php:489
11689
+ #: includes/hud-dismiss-functions.php:578
11690
+ #: includes/hud-dismiss-functions.php:645
11691
+ #: includes/hud-dismiss-functions.php:673
11692
+ #: includes/hud-dismiss-functions.php:710
11693
  msgid "Dismiss Notice"
11694
  msgstr ""
11695
 
12256
  msgid "No Plugin or Theme AutoFix Custom Code Whitelist Rules were found"
12257
  msgstr ""
12258
 
12259
+ #: includes/hud-dismiss-functions.php:42
12260
  msgid ""
12261
  "WARNING! BPS requires at least PHP5 to function correctly. Your PHP version "
12262
  "is: "
12263
  msgstr ""
12264
 
12265
+ #: includes/hud-dismiss-functions.php:42
12266
  msgid "BPS Guide - PHP5 Solution"
12267
  msgstr ""
12268
 
12269
+ #: includes/hud-dismiss-functions.php:42
12270
  msgid ""
12271
  "The BPS Guide will open in a new browser window. You will not be directed "
12272
  "away from your WordPress Dashboard."
12273
  msgstr ""
12274
 
12275
+ #: includes/hud-dismiss-functions.php:64
12276
  msgid ""
12277
  "WARNING! BPS has detected that Safe Mode is set to On in your php.ini file."
12278
  msgstr ""
12279
 
12280
+ #: includes/hud-dismiss-functions.php:64
12281
  msgid ""
12282
  "If you see errors that BPS was unable to automatically create the backup "
12283
  "folders this is probably the reason why."
12284
  msgstr ""
12285
 
12286
+ #: includes/hud-dismiss-functions.php:98
12287
  msgid "HUD Check: Custom Permalinks are NOT being used."
12288
  msgstr ""
12289
 
12290
+ #: includes/hud-dismiss-functions.php:98
12291
  msgid "It is recommended that you use Custom Permalinks: "
12292
  msgstr ""
12293
 
12294
+ #: includes/hud-dismiss-functions.php:98
12295
  msgid "How to setup Custom Permalinks"
12296
  msgstr ""
12297
 
12298
+ #: includes/hud-dismiss-functions.php:131
12299
  msgid ""
12300
  "WARNING! BPS has detected that your Server is a Windows IIS Server that does "
12301
  "not support htaccess rewriting."
12302
  msgstr ""
12303
 
12304
+ #: includes/hud-dismiss-functions.php:131
12305
  msgid "Do NOT activate BulletProof Modes unless you know what you are doing."
12306
  msgstr ""
12307
 
12308
+ #: includes/hud-dismiss-functions.php:131
12309
  msgid "Your Server Type is: "
12310
  msgstr ""
12311
 
12312
+ #: includes/hud-dismiss-functions.php:131
12313
  msgid "WordPress Codex - Using Permalinks - see IIS section"
12314
  msgstr ""
12315
 
12316
+ #: includes/hud-dismiss-functions.php:154
12317
+ #: includes/hud-dismiss-functions.php:159
12318
  msgid "WARNING! BPS was unable to automatically create the /"
12319
  msgstr ""
12320
 
12321
+ #: includes/hud-dismiss-functions.php:154
12322
  msgid "/bps-backup folder."
12323
  msgstr ""
12324
 
12325
+ #: includes/hud-dismiss-functions.php:154
12326
+ #: includes/hud-dismiss-functions.php:159
12327
  msgid "You will need to create the /"
12328
  msgstr ""
12329
 
12330
+ #: includes/hud-dismiss-functions.php:154
12331
  msgid ""
12332
  "/bps-backup folder manually via FTP. The folder permissions for the bps-"
12333
  "backup folder need to be set to 755 in order to successfully perform "
12334
  "permanent online backups."
12335
  msgstr ""
12336
 
12337
+ #: includes/hud-dismiss-functions.php:154
12338
+ #: includes/hud-dismiss-functions.php:159
12339
  msgid "To remove this message permanently click "
12340
  msgstr ""
12341
 
12342
+ #: includes/hud-dismiss-functions.php:154
12343
+ #: includes/hud-dismiss-functions.php:159
12344
  msgid "here."
12345
  msgstr ""
12346
 
12347
+ #: includes/hud-dismiss-functions.php:159
12348
  msgid "/bps-backup/master-backups folder."
12349
  msgstr ""
12350
 
12351
+ #: includes/hud-dismiss-functions.php:159
12352
  msgid ""
12353
  "/bps-backup/master-backups folder manually via FTP. The folder permissions "
12354
  "for the master-backups folder need to be set to 755 in order to successfully "
12355
  "perform permanent online backups."
12356
  msgstr ""
12357
 
12358
+ #: includes/hud-dismiss-functions.php:193
12359
+ #: includes/hud-dismiss-functions.php:205
12360
  msgid "Bonus Custom Code:"
12361
  msgstr ""
12362
 
12363
+ #: includes/hud-dismiss-functions.php:193
12364
+ #: includes/hud-dismiss-functions.php:205
12365
  msgid ""
12366
  "Click the links below to get Bonus Custom Code or click the Dismiss Notice "
12367
  "links or click this "
12368
  msgstr ""
12369
 
12370
+ #: includes/hud-dismiss-functions.php:193
12371
+ #: includes/hud-dismiss-functions.php:205
12372
  msgid "Dismiss All Notices"
12373
  msgstr ""
12374
 
12375
+ #: includes/hud-dismiss-functions.php:193
12376
+ #: includes/hud-dismiss-functions.php:205
12377
  msgid ""
12378
  " link. To Reset Dismiss Notices click the Reset|Recheck Dismiss Notices "
12379
  "button on the Custom Code page."
12380
  msgstr ""
12381
 
12382
+ #: includes/hud-dismiss-functions.php:196
12383
+ #: includes/hud-dismiss-functions.php:211
12384
+ #: includes/hud-dismiss-functions.php:217
12385
+ #: includes/hud-dismiss-functions.php:223
12386
+ #: includes/hud-dismiss-functions.php:229
12387
+ #: includes/hud-dismiss-functions.php:243
12388
+ #: includes/hud-dismiss-functions.php:249
12389
+ #: includes/hud-dismiss-functions.php:254
12390
  msgid "Get "
12391
  msgstr ""
12392
 
12393
+ #: includes/hud-dismiss-functions.php:196
12394
+ #: includes/hud-dismiss-functions.php:243
12395
  msgid "POST Request Attack Protection Code"
12396
  msgstr ""
12397
 
12398
+ #: includes/hud-dismiss-functions.php:196
12399
+ #: includes/hud-dismiss-functions.php:211
12400
+ #: includes/hud-dismiss-functions.php:217
12401
+ #: includes/hud-dismiss-functions.php:223
12402
+ #: includes/hud-dismiss-functions.php:229
12403
+ #: includes/hud-dismiss-functions.php:243
12404
+ #: includes/hud-dismiss-functions.php:249
12405
+ #: includes/hud-dismiss-functions.php:254
12406
  msgid " or "
12407
  msgstr ""
12408
 
12409
+ #: includes/hud-dismiss-functions.php:211
12410
  msgid "Brute Force Login Protection Code"
12411
  msgstr ""
12412
 
12413
+ #: includes/hud-dismiss-functions.php:217
12414
  msgid "Speed Boost Cache Code"
12415
  msgstr ""
12416
 
12417
+ #: includes/hud-dismiss-functions.php:223
12418
  msgid "Author Enumeration BOT Probe Code"
12419
  msgstr ""
12420
 
12421
+ #: includes/hud-dismiss-functions.php:229
12422
  msgid "XML-RPC DDoS Protection Code"
12423
  msgstr ""
12424
 
12425
+ #: includes/hud-dismiss-functions.php:249
12426
  msgid "Mime Sniffing|Drive-by Download Attack Protection Code"
12427
  msgstr ""
12428
 
12429
+ #: includes/hud-dismiss-functions.php:254
12430
  msgid "External iFrame|Clickjacking Protection Code"
12431
  msgstr ""
12432
 
12433
+ #: includes/hud-dismiss-functions.php:342
12434
+ #: includes/hud-dismiss-functions.php:385
12435
  msgid "HUD Check: Wordfence PHP/php.ini handler htaccess code detected"
12436
  msgstr ""
12437
 
12438
+ #: includes/hud-dismiss-functions.php:342
12439
+ #: includes/hud-dismiss-functions.php:385
12440
  msgid ""
12441
  "Wordfence PHP/php.ini handler htaccess code was found in your root .htaccess "
12442
  "file, but was NOT found in BPS Custom Code."
12443
  msgstr ""
12444
 
12445
+ #: includes/hud-dismiss-functions.php:342
12446
+ #: includes/hud-dismiss-functions.php:385
12447
  msgid ""
12448
  "Using the Wordfence WAF Firewall may cause serious/critical problems for "
12449
  "your website and BPS."
12450
  msgstr ""
12451
 
12452
+ #: includes/hud-dismiss-functions.php:347
12453
+ #: includes/hud-dismiss-functions.php:390
12454
  msgid "HUD Check: PHP/php.ini handler htaccess code check"
12455
  msgstr ""
12456
 
12457
+ #: includes/hud-dismiss-functions.php:347
12458
+ #: includes/hud-dismiss-functions.php:390
12459
  msgid ""
12460
  "PHP/php.ini handler htaccess code was found in your root .htaccess file, but "
12461
  "was NOT found in BPS Custom Code."
12462
  msgstr ""
12463
 
12464
+ #: includes/hud-dismiss-functions.php:347
12465
+ #: includes/hud-dismiss-functions.php:390
12466
  msgid "To automatically fix this click here: "
12467
  msgstr ""
12468
 
12469
+ #: includes/hud-dismiss-functions.php:347
12470
+ #: includes/hud-dismiss-functions.php:390
12471
  msgid ""
12472
  "The Setup Wizard Pre-Installation Checks feature will automatically fix this "
12473
  "just by visiting the Setup Wizard page."
12474
  msgstr ""
12475
 
12476
+ #: includes/hud-dismiss-functions.php:385
12477
  msgid " for the steps to fix this Wordfence problem."
12478
  msgstr ""
12479
 
12480
+ #: includes/hud-dismiss-functions.php:446
12481
  msgid "Sucuri Restrict wp-content access Hardening Option problem detected"
12482
  msgstr ""
12483
 
12484
+ #: includes/hud-dismiss-functions.php:446
12485
  msgid ""
12486
  "Using the Sucuri Restrict wp-content access Hardening Option breaks BPS "
12487
  "Security Logging, Plugin Firewall, Uploads Anti-Exploit Guard & probably "
12488
  "other things in BPS and other plugins as well."
12489
  msgstr ""
12490
 
12491
+ #: includes/hud-dismiss-functions.php:446
12492
  msgid "To fix this problem click this link: "
12493
  msgstr ""
12494
 
12495
+ #: includes/hud-dismiss-functions.php:446
12496
  msgid "Sucuri Hardening Options"
12497
  msgstr ""
12498
 
12499
+ #: includes/hud-dismiss-functions.php:446
12500
  msgid ""
12501
  " and click the Sucuri Restrict wp-content access Revert hardening button."
12502
  msgstr ""
12503
 
12504
+ #: includes/hud-dismiss-functions.php:489
12505
  msgid "The WordPress Firewall 2 plugin is installed and activated"
12506
  msgstr ""
12507
 
12508
+ #: includes/hud-dismiss-functions.php:489
12509
  msgid "It is recommended that you delete the WordPress Firewall 2 plugin."
12510
  msgstr ""
12511
 
12512
+ #: includes/hud-dismiss-functions.php:489
12513
  msgid " for more information."
12514
  msgstr ""
12515
 
12516
+ #: includes/hud-dismiss-functions.php:521
12517
  msgid "Notice: BPS Query String Exploits Code Changes"
12518
  msgstr ""
12519
 
12520
+ #: includes/hud-dismiss-functions.php:521
12521
  msgid ""
12522
  "Older BPS Query String Exploits code was found in BPS Custom Code. Several "
12523
  "Query String Exploits rules were changed/added/modified in the root ."
12524
  "htaccess file in BPS .49.6, .50.2 & .50.3."
12525
  msgstr ""
12526
 
12527
+ #: includes/hud-dismiss-functions.php:521
12528
  msgid ""
12529
  "Copy the new Query String Exploits section of code from your root .htaccess "
12530
  "file and paste it into this BPS Custom Code text box: CUSTOM CODE BPSQSE BPS "
12531
  "QUERY STRING EXPLOITS and click the Save Root Custom Code button."
12532
  msgstr ""
12533
 
12534
+ #: includes/hud-dismiss-functions.php:521
12535
  msgid ""
12536
  "This Notice will go away once you have copied the new Query String Exploits "
12537
  "code to BPS Custom Code and clicked the Save Root Custom Code button."
12538
  msgstr ""
12539
 
12540
+ #: includes/hud-dismiss-functions.php:540
12541
  msgid "BPS Alert! A BPS htaccess file was NOT found in the BPS Backup folder: "
12542
  msgstr ""
12543
 
12544
+ #: includes/hud-dismiss-functions.php:540
12545
  msgid " and click the BPS Backup Folder BulletProof Mode Activate button."
12546
  msgstr ""
12547
 
12548
+ #: includes/hud-dismiss-functions.php:578
12549
  msgid "New Improved BPS Speed Boost Cache Code"
12550
  msgstr ""
12551
 
12552
+ #: includes/hud-dismiss-functions.php:578
12553
  msgid ""
12554
  "Older BPS Speed Boost Cache Code was found saved in this BPS Custom Code "
12555
  "text box: CUSTOM CODE TOP PHP/PHP.INI HANDLER/CACHE CODE"
12556
  msgstr ""
12557
 
12558
+ #: includes/hud-dismiss-functions.php:578
12559
  msgid ""
12560
  "Newer improved BPS Speed Boost Cache Code has been created, which should "
12561
  "improve website load speed performance even more."
12562
  msgstr ""
12563
 
12564
+ #: includes/hud-dismiss-functions.php:578
12565
  msgid "Get The New Improved BPS Speed Boost Cache Code"
12566
  msgstr ""
12567
 
12568
+ #: includes/hud-dismiss-functions.php:578
12569
  msgid ". To dismiss this Notice click the Dismiss Notice button below."
12570
  msgstr ""
12571
 
12572
+ #: includes/hud-dismiss-functions.php:578
12573
  msgid ""
12574
  "To Reset Dismiss Notices click the Reset|Recheck Dismiss Notices button on "
12575
  "the Custom Code page."
12576
  msgstr ""
12577
 
12578
+ #: includes/hud-dismiss-functions.php:585
12579
  msgid "BPS Speed Boost Cache Custom Code Notice"
12580
  msgstr ""
12581
 
12582
+ #: includes/hud-dismiss-functions.php:585
12583
  msgid ""
12584
  "BPS Speed Boost Cache Code was found in this BPS Custom Code text box: "
12585
  "CUSTOM CODE TOP PHP/PHP.INI HANDLER/CACHE CODE"
12586
  msgstr ""
12587
 
12588
+ #: includes/hud-dismiss-functions.php:585
12589
  msgid ""
12590
  "and another caching plugin's Marker text was also found in this BPS Custom "
12591
  "Code text box."
12592
  msgstr ""
12593
 
12594
+ #: includes/hud-dismiss-functions.php:585
12595
  msgid "Click this link: "
12596
  msgstr ""
12597
 
12598
+ #: includes/hud-dismiss-functions.php:585
12599
  msgid "BPS Speed Boost Cache Custom Code Notice Forum Topic"
12600
  msgstr ""
12601
 
12602
+ #: includes/hud-dismiss-functions.php:585
12603
  msgid " for help information on what this Notice means and what to do next."
12604
  msgstr ""
12605
 
12606
+ #: includes/hud-dismiss-functions.php:645
12607
  msgid "BPS Plugin Automatic Update Notice"
12608
  msgstr ""
12609
 
12610
+ #: includes/hud-dismiss-functions.php:645
12611
  msgid ""
12612
  "Would you like to have BPS plugin updates installed automatically? Click "
12613
  "this link: "
12614
  msgstr ""
12615
 
12616
+ #: includes/hud-dismiss-functions.php:645
12617
  msgid " and click the BPS MU Tools Enable BPS Plugin AutoUpdates link."
12618
  msgstr ""
12619
 
12620
+ #: includes/hud-dismiss-functions.php:673
12621
  msgid "MScan First Run Notice"
12622
  msgstr ""
12623
 
12624
+ #: includes/hud-dismiss-functions.php:673
12625
  msgid ""
12626
  "Please take a few minutes to read the \"Basic Info|Recommendations|"
12627
  "Limitations|Restrictions\" help section in the"
12628
  msgstr ""
12629
 
12630
+ #: includes/hud-dismiss-functions.php:673
12631
  msgid "before running a scan."
12632
  msgstr ""
12633
 
12634
+ #: includes/hud-dismiss-functions.php:673
12635
  msgid ""
12636
  "It is highly recommended that you use the Scan Time Estimate Tool before "
12637
  "running an actual scan. The Scan Time Estimate Tool calculates the total "
12638
  "estimated time of a scan based on your MScan Option settings without "
12639
  "actually running a scan. To Dismiss this Notice click the Dismiss Notice "
12640
  "button below. To Reset Dismiss Notices click the Reset|Recheck Dismiss "
12641
+ "Notices button on the BPS Custom Code page."
12642
+ msgstr ""
12643
+
12644
+ #: includes/hud-dismiss-functions.php:710
12645
+ msgid "BPS New Feature Notice: JTC-Lite"
12646
+ msgstr ""
12647
+
12648
+ #: includes/hud-dismiss-functions.php:710
12649
+ msgid ""
12650
+ "JTC-Lite protects the WordPress Login page Form against automated SpamBot "
12651
+ "and HackerBot Brute Force Login attacks"
12652
+ msgstr ""
12653
+
12654
+ #: includes/hud-dismiss-functions.php:710
12655
+ msgid ""
12656
+ "and also prevents User Accounts from being locked repeatedly by Brute Force "
12657
+ "Login Bot attacks on your Login page Form."
12658
+ msgstr ""
12659
+
12660
+ #: includes/hud-dismiss-functions.php:710
12661
+ msgid "To enable/turn On JTC-Lite, click this "
12662
+ msgstr ""
12663
+
12664
+ #: includes/hud-dismiss-functions.php:710
12665
+ msgid ""
12666
+ ". Click/check the Login Form Checkbox and click the Save Options button."
12667
+ msgstr ""
12668
+
12669
+ #: includes/hud-dismiss-functions.php:710
12670
+ msgid ""
12671
+ "To Dismiss this Notice click the Dismiss Notice button below. To Reset "
12672
+ "Dismiss Notices click the Reset|Recheck Dismiss Notices button on the BPS "
12673
+ "Custom Code page."
12674
  msgstr ""
12675
 
12676
  #: includes/login-security.php:115 includes/login-security.php:121
12679
  #: includes/login-security.php:708 includes/login-security.php:714
12680
  #: includes/login-security.php:718 includes/login-security.php:724
12681
  #: includes/login-security.php:728 includes/login-security.php:738
12682
+ #: includes/login-security.php:752 includes/login-security.php:756
12683
+ #: includes/login-security.php:763 includes/login-security.php:767
12684
+ #: includes/login-security.php:783 includes/login-security.php:787
12685
+ #: includes/login-security.php:802 includes/login-security.php:806
12686
  msgid "ERROR:"
12687
  msgstr ""
12688
 
12700
 
12701
  #: includes/login-security.php:121 includes/login-security.php:464
12702
  #: includes/login-security.php:724 includes/login-security.php:728
12703
+ #: includes/login-security.php:783 includes/login-security.php:787
12704
+ #: includes/login-security.php:802 includes/login-security.php:806
12705
  msgid " Invalid Entry."
12706
  msgstr ""
12707
 
12709
  #: includes/login-security.php:708 includes/login-security.php:714
12710
  #: includes/login-security.php:718 includes/login-security.php:724
12711
  #: includes/login-security.php:728 includes/login-security.php:738
12712
+ #: includes/login-security.php:752 includes/login-security.php:756
12713
+ #: includes/login-security.php:763 includes/login-security.php:767
12714
+ #: includes/login-security.php:783 includes/login-security.php:787
12715
+ #: includes/login-security.php:802 includes/login-security.php:806
12716
  msgid "Lost your password?"
12717
  msgstr ""
12718
 
12719
  #: includes/login-security.php:130 includes/login-security.php:473
12720
+ #: includes/login-security.php:926
12721
  msgid "<strong>ERROR</strong>: Incorrect CAPTCHA Entered."
12722
  msgstr ""
12723
 
12877
  msgid " Invalid email address."
12878
  msgstr ""
12879
 
12880
+ #: includes/login-security.php:738 includes/login-security.php:756
12881
+ #: includes/login-security.php:767
12882
  msgid " The password you entered for the username "
12883
  msgstr ""
12884
 
12885
+ #: includes/login-security.php:738 includes/login-security.php:752
12886
+ #: includes/login-security.php:756 includes/login-security.php:763
12887
+ #: includes/login-security.php:767
12888
  msgid " is incorrect. "
12889
  msgstr ""
12890
 
12891
+ #: includes/login-security.php:752 includes/login-security.php:763
12892
  msgid " The password you entered for the email address "
12893
  msgstr ""
12894
 
12895
+ #: includes/login-security.php:752 includes/login-security.php:756
12896
+ #: includes/login-security.php:783 includes/login-security.php:802
12897
  msgid " Login Attempts Remaining "
12898
  msgstr ""
12899
 
readme.txt CHANGED
@@ -3,8 +3,8 @@ Contributors: AITpro
3
  Donate link: https://wordpress.org/support/view/plugin-reviews/bulletproof-security?rate=5#postform
4
  Tags: security, secure, scanner, login security, firewall, security plugin, wordpress security, login, malware, malware scanner, bruteforce, backup, exploit, infection, protection, virus, anti-virus, logout, spam, anti-spam
5
  Requires at least: 3.8
6
- Tested up to: 4.8
7
- Stable tag: 2.7
8
  License: GPLv2 or later
9
  License URI: http://www.gnu.org/licenses/gpl-2.0.html
10
 
3
  Donate link: https://wordpress.org/support/view/plugin-reviews/bulletproof-security?rate=5#postform
4
  Tags: security, secure, scanner, login security, firewall, security plugin, wordpress security, login, malware, malware scanner, bruteforce, backup, exploit, infection, protection, virus, anti-virus, logout, spam, anti-spam
5
  Requires at least: 3.8
6
+ Tested up to: 4.9
7
+ Stable tag: 2.8
8
  License: GPLv2 or later
9
  License URI: http://www.gnu.org/licenses/gpl-2.0.html
10