Version Description
Download this release
Release Info
| Developer | AITpro |
| Plugin |  BulletProof Security |
| Version | 3.2 |
| Comparing to | |
| See all releases | |
Code changes from version 3.1 to 3.2
- admin/core/core-forms.php +2 -0
- admin/core/core.php +6 -1
- admin/htaccess/bps-mu-tools.php +12 -3
- admin/htaccess/secure.htaccess +1 -1
- admin/htaccess/wpadmin-secure.htaccess +1 -1
- admin/includes/admin.php +16 -1
- admin/system-info/system-info.php +3 -7
- admin/wizard/wizard.php +38 -2
- bulletproof-security.php +9 -9
- includes/general-functions.php +5 -3
- includes/hud-autofix-setup.php +4 -2
- readme.txt +1 -1
admin/core/core-forms.php
CHANGED
|
@@ -630,6 +630,7 @@ if ( isset( $_POST['bpsResetDismissSubmit'] ) && current_user_can('manage_option
|
|
| 630 |
echo $text;
|
| 631 |
}
|
| 632 |
|
|
|
|
| 633 |
if ( ! delete_user_meta($user_id, 'bpsPro_ignore_EPC_plugin_notice') ) {
|
| 634 |
$text = __('The Endurance Page Cache (EPC) plugin Notice is NOT set. Nothing to reset.', 'bulletproof-security').'<br>';
|
| 635 |
echo $text;
|
|
@@ -637,6 +638,7 @@ if ( isset( $_POST['bpsResetDismissSubmit'] ) && current_user_can('manage_option
|
|
| 637 |
$text = '<span style="color:#008000;">'.__('Success! The Endurance Page Cache (EPC) plugin Notice is reset.', 'bulletproof-security').'</span><br>';
|
| 638 |
echo $text;
|
| 639 |
}
|
|
|
|
| 640 |
|
| 641 |
if ( ! delete_user_meta($user_id, 'bps_ignore_mscan_notice') ) {
|
| 642 |
$text = __('The MScan First Run Notice is NOT set. Nothing to reset.', 'bulletproof-security').'<br>';
|
| 630 |
echo $text;
|
| 631 |
}
|
| 632 |
|
| 633 |
+
/*
|
| 634 |
if ( ! delete_user_meta($user_id, 'bpsPro_ignore_EPC_plugin_notice') ) {
|
| 635 |
$text = __('The Endurance Page Cache (EPC) plugin Notice is NOT set. Nothing to reset.', 'bulletproof-security').'<br>';
|
| 636 |
echo $text;
|
| 638 |
$text = '<span style="color:#008000;">'.__('Success! The Endurance Page Cache (EPC) plugin Notice is reset.', 'bulletproof-security').'</span><br>';
|
| 639 |
echo $text;
|
| 640 |
}
|
| 641 |
+
*/
|
| 642 |
|
| 643 |
if ( ! delete_user_meta($user_id, 'bps_ignore_mscan_notice') ) {
|
| 644 |
$text = __('The MScan First Run Notice is NOT set. Nothing to reset.', 'bulletproof-security').'<br>';
|
admin/core/core.php
CHANGED
|
@@ -1714,7 +1714,12 @@ $text = '<h3><span class="blue-bold">'.__('The Complete Website Security Solutio
|
|
| 1714 |
|
| 1715 |
<a href="https://forum.ait-pro.com/forums/topic/bulletproof-security-pro-version-release-dates/" target="_blank" title="Link Opens in New Browser Window" style="font-size:22px;"><?php _e('BPS Pro Version Release Dates', 'bulletproof-security'); ?></a><br />
|
| 1716 |
<div class="pro-links">
|
| 1717 |
-
<?php
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 1718 |
echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '13.6', 'https://www.ait-pro.com/aitpro-blog/5509/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-13-6/' ).'<br>';
|
| 1719 |
echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '13.5', 'https://www.ait-pro.com/aitpro-blog/5505/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-13-5/' ).'<br>';
|
| 1720 |
echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '13.4.1', 'https://www.ait-pro.com/aitpro-blog/5494/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-13-4-1/' ).'<br>';
|
| 1714 |
|
| 1715 |
<a href="https://forum.ait-pro.com/forums/topic/bulletproof-security-pro-version-release-dates/" target="_blank" title="Link Opens in New Browser Window" style="font-size:22px;"><?php _e('BPS Pro Version Release Dates', 'bulletproof-security'); ?></a><br />
|
| 1716 |
<div class="pro-links">
|
| 1717 |
+
<?php
|
| 1718 |
+
echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '13.7', 'https://www.ait-pro.com/aitpro-blog/5518/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-13-7/' ).'<br>'; ?>
|
| 1719 |
+
</div>
|
| 1720 |
+
<div id="milestone">7 Year Milestone: 8-1-2018 | First Public Release: 8-1-2011</div>
|
| 1721 |
+
<div class="pro-links">
|
| 1722 |
+
<?php
|
| 1723 |
echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '13.6', 'https://www.ait-pro.com/aitpro-blog/5509/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-13-6/' ).'<br>';
|
| 1724 |
echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '13.5', 'https://www.ait-pro.com/aitpro-blog/5505/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-13-5/' ).'<br>';
|
| 1725 |
echo sprintf( __( '<a href="%2$s" target="_blank" title="Link Opens in New Browser Window">Whats New in BPS Pro %1$s</a>' ), '13.4.1', 'https://www.ait-pro.com/aitpro-blog/5494/bulletproof-security-pro/whats-new-in-bulletproof-security-pro-13-4-1/' ).'<br>';
|
admin/htaccess/bps-mu-tools.php
CHANGED
|
@@ -2,7 +2,7 @@
|
|
| 2 |
/*
|
| 3 |
Plugin Name: BPS MU Tools
|
| 4 |
Description: <strong>Enable|Disable BPS Plugin AutoUpdates:</strong> Clicking this link enables or disables BPS Plugin automatic updates for the BPS plugin only. <strong>Enable|Disable BPS Folder|Deactivation Checks:</strong> Clicking this link enables or disables checks for whether the /bulletproof-security/ plugin folder has been renamed or deleted. Checks for whether the BPS plugin has been deactivated. Email alerts are sent every 5 minutes when the BPS plugin folder has been renamed or deleted or the BPS plugin has been deactivated. To disable these checks and the email alerts click the Disable BPS Folder|Deactivation Checks link. <strong>Note:</strong> When you click disable links you will then see enable links and vice versa.
|
| 5 |
-
Version:
|
| 6 |
Author: AITpro
|
| 7 |
Author URI: https://forum.ait-pro.com/forums/forum/bulletproof-security-free/
|
| 8 |
License: GPLv2 or later
|
|
@@ -17,6 +17,7 @@ License URI: http://www.gnu.org/licenses/gpl-2.0.html
|
|
| 17 |
## 1.0: Added Toggle Action Links and DB options so that BPS MU Tools can be enabled or disabled.
|
| 18 |
## 2.0: Added CSRF Nonce verification to Toggle GET links.
|
| 19 |
## 2.7: BugFix for SSL sites nonce verification failing.
|
|
|
|
| 20 |
|
| 21 |
## Uncommenting these filters below and commenting out this BPS filter: add_filter( 'auto_update_plugin', 'bpsPro_autoupdate_bps_plugin', 10, 2 );
|
| 22 |
## will allow ALL plugin and theme automatic updates on your website. At a later time|version this BPS MU plugin file will include options to enable|disable these things.
|
|
@@ -59,6 +60,10 @@ function bpsPro_plugin_folder_check() {
|
|
| 59 |
return;
|
| 60 |
}
|
| 61 |
|
|
|
|
|
|
|
|
|
|
|
|
|
| 62 |
if ( time() > $MUTools_Options['bps_mu_tools_timestamp'] ) {
|
| 63 |
|
| 64 |
if ( ! is_dir( WP_PLUGIN_DIR . '/bulletproof-security' ) ) {
|
|
@@ -123,7 +128,7 @@ function bpsPro_plugin_folder_check() {
|
|
| 123 |
}
|
| 124 |
}
|
| 125 |
|
| 126 |
-
bpsPro_plugin_folder_check();
|
| 127 |
|
| 128 |
// Check if the BPS plugin has been deactivated.
|
| 129 |
// Writes a log entry and sends an email alert once every 5 minutes.
|
|
@@ -135,6 +140,10 @@ function bpsPro_plugin_deactivation_check() {
|
|
| 135 |
return;
|
| 136 |
}
|
| 137 |
|
|
|
|
|
|
|
|
|
|
|
|
|
| 138 |
global $blog_id;
|
| 139 |
|
| 140 |
if ( is_multisite() && $blog_id != 1 ) {
|
|
@@ -206,7 +215,7 @@ function bpsPro_plugin_deactivation_check() {
|
|
| 206 |
}
|
| 207 |
}
|
| 208 |
|
| 209 |
-
bpsPro_plugin_deactivation_check();
|
| 210 |
|
| 211 |
// Note: you cannot use current_user_can('manage_options') in a must-use plugin.
|
| 212 |
function bpsPro_toggle_links() {
|
| 2 |
/*
|
| 3 |
Plugin Name: BPS MU Tools
|
| 4 |
Description: <strong>Enable|Disable BPS Plugin AutoUpdates:</strong> Clicking this link enables or disables BPS Plugin automatic updates for the BPS plugin only. <strong>Enable|Disable BPS Folder|Deactivation Checks:</strong> Clicking this link enables or disables checks for whether the /bulletproof-security/ plugin folder has been renamed or deleted. Checks for whether the BPS plugin has been deactivated. Email alerts are sent every 5 minutes when the BPS plugin folder has been renamed or deleted or the BPS plugin has been deactivated. To disable these checks and the email alerts click the Disable BPS Folder|Deactivation Checks link. <strong>Note:</strong> When you click disable links you will then see enable links and vice versa.
|
| 5 |
+
Version: 4.0
|
| 6 |
Author: AITpro
|
| 7 |
Author URI: https://forum.ait-pro.com/forums/forum/bulletproof-security-free/
|
| 8 |
License: GPLv2 or later
|
| 17 |
## 1.0: Added Toggle Action Links and DB options so that BPS MU Tools can be enabled or disabled.
|
| 18 |
## 2.0: Added CSRF Nonce verification to Toggle GET links.
|
| 19 |
## 2.7: BugFix for SSL sites nonce verification failing.
|
| 20 |
+
## 3.2: Disabling all functions except for the BPS Plugin automatic update function.
|
| 21 |
|
| 22 |
## Uncommenting these filters below and commenting out this BPS filter: add_filter( 'auto_update_plugin', 'bpsPro_autoupdate_bps_plugin', 10, 2 );
|
| 23 |
## will allow ALL plugin and theme automatic updates on your website. At a later time|version this BPS MU plugin file will include options to enable|disable these things.
|
| 60 |
return;
|
| 61 |
}
|
| 62 |
|
| 63 |
+
if ( defined('DISABLE_WP_CRON') && DISABLE_WP_CRON === true ) {
|
| 64 |
+
return;
|
| 65 |
+
}
|
| 66 |
+
|
| 67 |
if ( time() > $MUTools_Options['bps_mu_tools_timestamp'] ) {
|
| 68 |
|
| 69 |
if ( ! is_dir( WP_PLUGIN_DIR . '/bulletproof-security' ) ) {
|
| 128 |
}
|
| 129 |
}
|
| 130 |
|
| 131 |
+
//bpsPro_plugin_folder_check();
|
| 132 |
|
| 133 |
// Check if the BPS plugin has been deactivated.
|
| 134 |
// Writes a log entry and sends an email alert once every 5 minutes.
|
| 140 |
return;
|
| 141 |
}
|
| 142 |
|
| 143 |
+
if ( defined('DISABLE_WP_CRON') && DISABLE_WP_CRON === true ) {
|
| 144 |
+
return;
|
| 145 |
+
}
|
| 146 |
+
|
| 147 |
global $blog_id;
|
| 148 |
|
| 149 |
if ( is_multisite() && $blog_id != 1 ) {
|
| 215 |
}
|
| 216 |
}
|
| 217 |
|
| 218 |
+
//bpsPro_plugin_deactivation_check();
|
| 219 |
|
| 220 |
// Note: you cannot use current_user_can('manage_options') in a must-use plugin.
|
| 221 |
function bpsPro_toggle_links() {
|
admin/htaccess/secure.htaccess
CHANGED
|
@@ -1,4 +1,4 @@
|
|
| 1 |
-
# BULLETPROOF 3.
|
| 2 |
|
| 3 |
# PHP/PHP.INI HANDLER/CACHE CODE
|
| 4 |
# Use BPS Custom Code to add php/php.ini Handler and Cache htaccess code and to save it permanently.
|
| 1 |
+
# BULLETPROOF 3.2 SECURE .HTACCESS
|
| 2 |
|
| 3 |
# PHP/PHP.INI HANDLER/CACHE CODE
|
| 4 |
# Use BPS Custom Code to add php/php.ini Handler and Cache htaccess code and to save it permanently.
|
admin/htaccess/wpadmin-secure.htaccess
CHANGED
|
@@ -1,4 +1,4 @@
|
|
| 1 |
-
# BULLETPROOF 3.
|
| 2 |
|
| 3 |
# DO NOT ADD URL REWRITING IN THIS FILE OR WORDPRESS WILL BREAK
|
| 4 |
# RewriteRule ^(.*)$ - [F] works in /wp-admin without breaking WordPress
|
| 1 |
+
# BULLETPROOF 3.2 WP-ADMIN SECURE .HTACCESS
|
| 2 |
|
| 3 |
# DO NOT ADD URL REWRITING IN THIS FILE OR WORDPRESS WILL BREAK
|
| 4 |
# RewriteRule ^(.*)$ - [F] works in /wp-admin without breaking WordPress
|
admin/includes/admin.php
CHANGED
|
@@ -125,7 +125,7 @@ global $wpdb, $wp_version, $blog_id;
|
|
| 125 |
}
|
| 126 |
}
|
| 127 |
|
| 128 |
-
// Whitelist BPS DB options: Total:
|
| 129 |
register_setting('bulletproof_security_options', 'bulletproof_security_options', 'bulletproof_security_options_validate');
|
| 130 |
register_setting('bulletproof_security_options_SLF', 'bulletproof_security_options_SLF', 'bulletproof_security_options_validate_SLF');
|
| 131 |
register_setting('bulletproof_security_options_gdpr', 'bulletproof_security_options_gdpr', 'bulletproof_security_options_validate_gdpr');
|
|
@@ -135,6 +135,7 @@ register_setting('bulletproof_security_options_autolock', 'bulletproof_security_
|
|
| 135 |
register_setting('bulletproof_security_options_db_backup', 'bulletproof_security_options_db_backup', 'bulletproof_security_options_validate_db_backup');
|
| 136 |
register_setting('bulletproof_security_options_wpt_nodes', 'bulletproof_security_options_wpt_nodes', 'bulletproof_security_options_validate_wpt_nodes');
|
| 137 |
register_setting('bulletproof_security_options_customcode', 'bulletproof_security_options_customcode', 'bulletproof_security_options_validate_customcode');
|
|
|
|
| 138 |
register_setting('bulletproof_security_options_autoupdate', 'bulletproof_security_options_autoupdate', 'bulletproof_security_options_validate_autoupdate');
|
| 139 |
register_setting('bulletproof_security_options_wizard_free', 'bulletproof_security_options_wizard_free', 'bulletproof_security_options_validate_wizard_free');
|
| 140 |
register_setting('bulletproof_security_options_MScan_status', 'bulletproof_security_options_MScan_status', 'bulletproof_security_options_validate_MScan_status');
|
|
@@ -320,7 +321,12 @@ global $blog_id;
|
|
| 320 |
add_submenu_page('bulletproof-security/admin/login/login.php', __('Maintenance Mode', 'bulletproof-security'), __('Maintenance Mode', 'bulletproof-security'), 'manage_options', 'bulletproof-security/admin/maintenance/maintenance.php' );
|
| 321 |
}
|
| 322 |
|
|
|
|
|
|
|
|
|
|
| 323 |
add_submenu_page('bulletproof-security/admin/login/login.php', __('System Info', 'bulletproof-security'), __('System Info', 'bulletproof-security'), 'manage_options', 'bulletproof-security/admin/system-info/system-info.php' );
|
|
|
|
|
|
|
| 324 |
add_submenu_page('bulletproof-security/admin/login/login.php', __('UI|UX Settings', 'bulletproof-security'), __('UI|UX Settings', 'bulletproof-security'), 'manage_options', 'bulletproof-security/admin/theme-skin/theme-skin.php' );
|
| 325 |
|
| 326 |
} else {
|
|
@@ -830,6 +836,7 @@ require_once( ABSPATH . 'wp-admin/includes/plugin.php');
|
|
| 830 |
delete_option('bulletproof_security_options_mod_security');
|
| 831 |
delete_option('bulletproof_security_options_vcheck');
|
| 832 |
delete_option('bulletproof_security_options_gdpr');
|
|
|
|
| 833 |
// will be adding this new upgrade notice option later
|
| 834 |
// delete_option('bulletproof_security_options_upgrade_notice');
|
| 835 |
|
|
@@ -1391,4 +1398,12 @@ function bulletproof_security_options_validate_gdpr($input) {
|
|
| 1391 |
return $options;
|
| 1392 |
}
|
| 1393 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 1394 |
?>
|
| 125 |
}
|
| 126 |
}
|
| 127 |
|
| 128 |
+
// Whitelist BPS DB options: Total: 41
|
| 129 |
register_setting('bulletproof_security_options', 'bulletproof_security_options', 'bulletproof_security_options_validate');
|
| 130 |
register_setting('bulletproof_security_options_SLF', 'bulletproof_security_options_SLF', 'bulletproof_security_options_validate_SLF');
|
| 131 |
register_setting('bulletproof_security_options_gdpr', 'bulletproof_security_options_gdpr', 'bulletproof_security_options_validate_gdpr');
|
| 135 |
register_setting('bulletproof_security_options_db_backup', 'bulletproof_security_options_db_backup', 'bulletproof_security_options_validate_db_backup');
|
| 136 |
register_setting('bulletproof_security_options_wpt_nodes', 'bulletproof_security_options_wpt_nodes', 'bulletproof_security_options_validate_wpt_nodes');
|
| 137 |
register_setting('bulletproof_security_options_customcode', 'bulletproof_security_options_customcode', 'bulletproof_security_options_validate_customcode');
|
| 138 |
+
register_setting('bulletproof_security_options_mu_sysinfo', 'bulletproof_security_options_mu_sysinfo', 'bulletproof_security_options_validate_mu_sysinfo');
|
| 139 |
register_setting('bulletproof_security_options_autoupdate', 'bulletproof_security_options_autoupdate', 'bulletproof_security_options_validate_autoupdate');
|
| 140 |
register_setting('bulletproof_security_options_wizard_free', 'bulletproof_security_options_wizard_free', 'bulletproof_security_options_validate_wizard_free');
|
| 141 |
register_setting('bulletproof_security_options_MScan_status', 'bulletproof_security_options_MScan_status', 'bulletproof_security_options_validate_MScan_status');
|
| 321 |
add_submenu_page('bulletproof-security/admin/login/login.php', __('Maintenance Mode', 'bulletproof-security'), __('Maintenance Mode', 'bulletproof-security'), 'manage_options', 'bulletproof-security/admin/maintenance/maintenance.php' );
|
| 322 |
}
|
| 323 |
|
| 324 |
+
// 3.2: Setup Wizard Option: Multisite Hide|Display System Info Page for Subsites
|
| 325 |
+
$Mu_Sysinfo_page_options = get_option('bulletproof_security_options_mu_sysinfo');
|
| 326 |
+
if ( $Mu_Sysinfo_page_options['bps_sysinfo_hide_display'] != 'hide' ) {
|
| 327 |
add_submenu_page('bulletproof-security/admin/login/login.php', __('System Info', 'bulletproof-security'), __('System Info', 'bulletproof-security'), 'manage_options', 'bulletproof-security/admin/system-info/system-info.php' );
|
| 328 |
+
}
|
| 329 |
+
|
| 330 |
add_submenu_page('bulletproof-security/admin/login/login.php', __('UI|UX Settings', 'bulletproof-security'), __('UI|UX Settings', 'bulletproof-security'), 'manage_options', 'bulletproof-security/admin/theme-skin/theme-skin.php' );
|
| 331 |
|
| 332 |
} else {
|
| 836 |
delete_option('bulletproof_security_options_mod_security');
|
| 837 |
delete_option('bulletproof_security_options_vcheck');
|
| 838 |
delete_option('bulletproof_security_options_gdpr');
|
| 839 |
+
delete_option('bulletproof_security_options_mu_sysinfo');
|
| 840 |
// will be adding this new upgrade notice option later
|
| 841 |
// delete_option('bulletproof_security_options_upgrade_notice');
|
| 842 |
|
| 1398 |
return $options;
|
| 1399 |
}
|
| 1400 |
|
| 1401 |
+
// Setup Wizard Options: Network|Multisite Hide|Display System Info page for Subsites
|
| 1402 |
+
function bulletproof_security_options_validate_mu_sysinfo($input) {
|
| 1403 |
+
$options = get_option('bulletproof_security_options_mu_sysinfo');
|
| 1404 |
+
$options['bps_sysinfo_hide_display'] = $input['bps_sysinfo_hide_display'];
|
| 1405 |
+
|
| 1406 |
+
return $options;
|
| 1407 |
+
}
|
| 1408 |
+
|
| 1409 |
?>
|
admin/system-info/system-info.php
CHANGED
|
@@ -488,21 +488,17 @@ function bpsPro_count_network_activated_plugins($count) {
|
|
| 488 |
echo '<br>';
|
| 489 |
echo '<strong><span class="sysinfo-label-text">'.__('Memcache', 'bulletproof-security').':</span></strong> ';
|
| 490 |
if ( extension_loaded('memcache') ) {
|
| 491 |
-
|
| 492 |
-
@$memcache->connect('localhost', 11211);
|
| 493 |
-
echo __('Memcache Extension is Loaded - ', 'bulletproof-security').__('Version: ', 'bulletproof-security') . @$memcache->getVersion();
|
| 494 |
} else {
|
| 495 |
_e('Memcache Extension is Not Loaded', 'bulletproof-security');
|
| 496 |
}
|
| 497 |
echo '<br>';
|
| 498 |
echo '<strong><span class="sysinfo-label-text">'.__('Memcached', 'bulletproof-security').':</span></strong> ';
|
| 499 |
if ( extension_loaded('memcached') ) {
|
| 500 |
-
|
| 501 |
-
@$memcached->addServer('localhost', 11211);
|
| 502 |
-
echo __('Memcached Extension is Loaded - ', 'bulletproof-security').__('Version: ', 'bulletproof-security') . @$memcached->getVersion();
|
| 503 |
} else {
|
| 504 |
_e('Memcached Extension is Not Loaded', 'bulletproof-security');
|
| 505 |
-
}
|
| 506 |
echo '<br>';
|
| 507 |
|
| 508 |
echo '</span>';
|
| 488 |
echo '<br>';
|
| 489 |
echo '<strong><span class="sysinfo-label-text">'.__('Memcache', 'bulletproof-security').':</span></strong> ';
|
| 490 |
if ( extension_loaded('memcache') ) {
|
| 491 |
+
echo __('Memcache Extension is Loaded', 'bulletproof-security');
|
|
|
|
|
|
|
| 492 |
} else {
|
| 493 |
_e('Memcache Extension is Not Loaded', 'bulletproof-security');
|
| 494 |
}
|
| 495 |
echo '<br>';
|
| 496 |
echo '<strong><span class="sysinfo-label-text">'.__('Memcached', 'bulletproof-security').':</span></strong> ';
|
| 497 |
if ( extension_loaded('memcached') ) {
|
| 498 |
+
echo __('Memcached Extension is Loaded', 'bulletproof-security');
|
|
|
|
|
|
|
| 499 |
} else {
|
| 500 |
_e('Memcached Extension is Not Loaded', 'bulletproof-security');
|
| 501 |
+
}
|
| 502 |
echo '<br>';
|
| 503 |
|
| 504 |
echo '</span>';
|
admin/wizard/wizard.php
CHANGED
|
@@ -415,7 +415,8 @@ $HFiles_options = get_option('bulletproof_security_options_htaccess_files');
|
|
| 415 |
bpsPro_Pwizard_Autofix_WPSC();
|
| 416 |
bpsPro_Pwizard_Autofix_W3TC();
|
| 417 |
bpsPro_Pwizard_Autofix_Comet_Cache();
|
| 418 |
-
|
|
|
|
| 419 |
bpsPro_Pwizard_Autofix_WPFC();
|
| 420 |
bpsPro_Pwizard_Autofix_WPR();
|
| 421 |
|
|
@@ -1109,7 +1110,7 @@ bpsSetupWizardPrechecks();
|
|
| 1109 |
<strong><a href="https://forum.ait-pro.com/forums/topic/bps-gdpr-compliance/" title="GDPR Compliance" target="_blank"><?php _e('GDPR Compliance Forum Topic', 'bulletproof-security'); ?></a></strong><br /><br />
|
| 1110 |
|
| 1111 |
<?php
|
| 1112 |
-
$dialog_text = '<strong>'.__('AutoFix (AutoWhitelist|AutoSetup|AutoCleanup)', 'bulletproof-security').'</strong><br>'.__('Setup Wizard AutoFix is turned On by default. When AutoFix is turned On the Setup Wizard will automatically create htaccess whitelist rules in BPS Custom Code and your Live htaccess files for other plugins and themes that you have installed that require htaccess code whitelist rules. Setup Wizard AutoFix will also automatically setup or cleanup htaccess code in BPS Custom Code for these caching plugins: WP Super Cache, W3 Total Cache, Comet Cache Plugin (free & Pro), WP Fastest Cache Plugin (free & Premium), Endurance Page Cache and WP Rocket. If a problem occurs with AutoFix you can turn On the AutoFix Debugger on the BPS UI|UX Settings page > BPS UI|UX|AutoFix Debug option to check the plugin or theme name and the BPS Custom Code text box where the problem is occurring. You can also turn Off AutoFix and AutoFix will not try to detect or create Custom Code whitelist rules or setup or cleanup caching plugins htaccess code. If a problem does occur with AutoFix turn On the BPS UI|UX|AutoFix Debug option, copy the AutoFix Debug information that is displayed to you and then click the AutoFix Forum Topic link at the top of this Read Me help window and post a forum Reply with your AutoFix Debug information so that we can figure out what the problem is.', 'bulletproof-security').'<br><br><strong>'.__('GDPR Compliance (IP Address Logging On|Off)', 'bulletproof-security').'</strong><br>'.__('The GDPR Compliance option setting is set to Off by default. Choosing the GDPR Compliance On option setting will disable IP address logging in all BPS features that log IP addresses. This plain text will be logged instead of IP addresses: GDPR Compliance On. List of BPS features that log IP addresses: Security Log, Login Security and Maintenance Mode. Note: For simplicity and ease of use this GDPR Compliance Setup Wizard Options setting is the only option setting that needs to be set instead of creating individual option settings in all BPS features that perform IP address logging. For more information about GDPR Compliance click the GDPR Compliance Forum Topic link at the top of this Read Me help window.', 'bulletproof-security').'<br><br><strong>'.__('Go Daddy Managed WordPress Hosting (GDMW):', 'bulletproof-security').'</strong><br>'.__('This option is ONLY for a special type of Go Daddy Hosting account called "Managed WordPress Hosting" and is NOT for regular/standard Go Daddy Hosting account types. Leave the default setting set to No, unless you have a Go Daddy Managed WordPress Hosting account. See the Forum Help Links section above for more information.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable htaccess Files:', 'bulletproof-security').'</strong><br>'.__('Before changing this option setting, click the ', 'bulletproof-security').'<strong><font color="blue">'.__('Enable|Disable htaccess Files', 'bulletproof-security').'</font></strong>'.__(' Forum Help Link at the top of this Read Me help window to find out exactly what this option setting does and when it should or should not be used. htaccess Files Disabled: Will disable all BPS htaccess features and files. htaccess Files Enabled: Will enable all BPS htaccess freatures and files.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable wp-admin BulletProof Mode', 'bulletproof-security').'</strong><br>'.__('The default setting is already set to: wp-admin BulletProof Mode Enabled. If you would like to disable wp-admin BulletProof Mode select wp-admin BulletProof Mode Disabled.', 'bulletproof-security').'<br><br><strong>'.__('Zip File Download Fix (Incapsula, Proxy, Other Cause):', 'bulletproof-security').'</strong><br>'.__('This option should only be set to On if you are seeing a 403 error and/or unable to download these Zip files: Custom Code Export Zip file, Login Security Table Export Zip file or the Setup Wizard Root htaccess file backup Zip file. The Setup Wizard Root htaccess file backup Zip file link is only displayed if BPS detects that your current Root htaccess file is not a BPS Root htaccess file. If you are still unable to download zip files after setting this option to On then you will need to whitelist your Proxy IP address in the Plugin Firewall Whitelist by Hostname (domain name) and IP Address tool under the Plugin Firewall Additional Whitelist Tools accordion tab. If that does not work then you will need to deactivate the Plugin Firewall temporarily, download the zip file and then activate the Plugin Firewall again.', 'bulletproof-security').'<br><br><strong>'.__('Network|Multisite Sitewide Login Security Settings', 'bulletproof-security').'</strong><br>'.__('This option is for Network|Multisite sites only. This is an independent option Form that creates and saves Login Security DB option settings for all Network sites when you click the Save Network LSM Options Sitewide button. If Login Security option settings have already been setup and saved for any Network site then those Login Security option settings will NOT be changed. If Login Security options settings have NOT already been setup and saved for any Network site then those Login Security option settings will be created and saved with these default settings: Max Login Attempts: 3, Automatic Lockout Time: 60, Manual Lockout Time: 60, Max DB Rows To Show: blank show all rows, Turn On|Turn Off: Turn On Login Security, Logging Options: Log Only Account Lockouts, Error Messages: Standard WP Login Errors, Attempts Remaining: Show Login Attempts Remaining, Password Reset: Enable Password Reset, Sort DB Rows: Ascending - Show Oldest Login First.', 'bulletproof-security').'<br><br><strong>'.__('Network|Multisite Sitewide JTC-Lite Settings', 'bulletproof-security').'</strong><br>'.__('This option is for Network|Multisite sites only. This is an independent option Form that creates and saves JTC-Lite DB option settings for all Network sites when you click the Save Network JTC Options Sitewide button. If JTC option settings have already been setup and saved for any Network site then those JTC option settings will not be changed. If JTC options settings have not already been setup and saved for any Network site then those JTC option settings will be created and saved with these default settings: JTC CAPTCHA: jtc, JTC ToolTip: Type/Enter: jtc, JTC Title|Text: Hover or click the text box below, Enable|Disable JTC Anti-Spam For These Forms: Login Form checkbox is checked and will display the JTC CAPTCHA text box on the Login Form.', 'bulletproof-security');
|
| 1113 |
echo $dialog_text;
|
| 1114 |
?>
|
| 1115 |
|
|
@@ -1191,6 +1192,18 @@ bpsSetupWizardPrechecks();
|
|
| 1191 |
<input type="submit" name="Submit-Zip-Download-Fix" class="button bps-button" style="margin:10px 0px 20px 0px;width:232px;height:auto;white-space:normal" value="<?php esc_attr_e('Save Zip File Download Fix Option', 'bulletproof-security') ?>" />
|
| 1192 |
</form>
|
| 1193 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 1194 |
<form name="bpsNetLSM" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/wizard/wizard.php#bps-tabs-2' ); ?>" method="post">
|
| 1195 |
<?php wp_nonce_field('bulletproof_security_net_lsm'); ?>
|
| 1196 |
<div>
|
|
@@ -1252,6 +1265,29 @@ if ( isset( $_POST['Submit-Zip-Download-Fix'] ) && current_user_can('manage_opti
|
|
| 1252 |
}
|
| 1253 |
}
|
| 1254 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 1255 |
// Network|Multisite: update/save Login Security DB option settings for all sites
|
| 1256 |
if ( isset( $_POST['Submit-Net-LSM'] ) && current_user_can('manage_options') ) {
|
| 1257 |
check_admin_referer( 'bulletproof_security_net_lsm' );
|
| 415 |
bpsPro_Pwizard_Autofix_WPSC();
|
| 416 |
bpsPro_Pwizard_Autofix_W3TC();
|
| 417 |
bpsPro_Pwizard_Autofix_Comet_Cache();
|
| 418 |
+
// 3.2: No longer offering autofix for the EPC plugin.
|
| 419 |
+
//bpsPro_Pwizard_Autofix_Endurance();
|
| 420 |
bpsPro_Pwizard_Autofix_WPFC();
|
| 421 |
bpsPro_Pwizard_Autofix_WPR();
|
| 422 |
|
| 1110 |
<strong><a href="https://forum.ait-pro.com/forums/topic/bps-gdpr-compliance/" title="GDPR Compliance" target="_blank"><?php _e('GDPR Compliance Forum Topic', 'bulletproof-security'); ?></a></strong><br /><br />
|
| 1111 |
|
| 1112 |
<?php
|
| 1113 |
+
$dialog_text = '<strong>'.__('AutoFix (AutoWhitelist|AutoSetup|AutoCleanup)', 'bulletproof-security').'</strong><br>'.__('Setup Wizard AutoFix is turned On by default. When AutoFix is turned On the Setup Wizard will automatically create htaccess whitelist rules in BPS Custom Code and your Live htaccess files for other plugins and themes that you have installed that require htaccess code whitelist rules. Setup Wizard AutoFix will also automatically setup or cleanup htaccess code in BPS Custom Code for these caching plugins: WP Super Cache, W3 Total Cache, Comet Cache Plugin (free & Pro), WP Fastest Cache Plugin (free & Premium), Endurance Page Cache and WP Rocket. If a problem occurs with AutoFix you can turn On the AutoFix Debugger on the BPS UI|UX Settings page > BPS UI|UX|AutoFix Debug option to check the plugin or theme name and the BPS Custom Code text box where the problem is occurring. You can also turn Off AutoFix and AutoFix will not try to detect or create Custom Code whitelist rules or setup or cleanup caching plugins htaccess code. If a problem does occur with AutoFix turn On the BPS UI|UX|AutoFix Debug option, copy the AutoFix Debug information that is displayed to you and then click the AutoFix Forum Topic link at the top of this Read Me help window and post a forum Reply with your AutoFix Debug information so that we can figure out what the problem is.', 'bulletproof-security').'<br><br><strong>'.__('GDPR Compliance (IP Address Logging On|Off)', 'bulletproof-security').'</strong><br>'.__('The GDPR Compliance option setting is set to Off by default. Choosing the GDPR Compliance On option setting will disable IP address logging in all BPS features that log IP addresses. This plain text will be logged instead of IP addresses: GDPR Compliance On. List of BPS features that log IP addresses: Security Log, Login Security and Maintenance Mode. Note: For simplicity and ease of use this GDPR Compliance Setup Wizard Options setting is the only option setting that needs to be set instead of creating individual option settings in all BPS features that perform IP address logging. For more information about GDPR Compliance click the GDPR Compliance Forum Topic link at the top of this Read Me help window.', 'bulletproof-security').'<br><br><strong>'.__('Go Daddy Managed WordPress Hosting (GDMW):', 'bulletproof-security').'</strong><br>'.__('This option is ONLY for a special type of Go Daddy Hosting account called "Managed WordPress Hosting" and is NOT for regular/standard Go Daddy Hosting account types. Leave the default setting set to No, unless you have a Go Daddy Managed WordPress Hosting account. See the Forum Help Links section above for more information.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable htaccess Files:', 'bulletproof-security').'</strong><br>'.__('Before changing this option setting, click the ', 'bulletproof-security').'<strong><font color="blue">'.__('Enable|Disable htaccess Files', 'bulletproof-security').'</font></strong>'.__(' Forum Help Link at the top of this Read Me help window to find out exactly what this option setting does and when it should or should not be used. htaccess Files Disabled: Will disable all BPS htaccess features and files. htaccess Files Enabled: Will enable all BPS htaccess freatures and files.', 'bulletproof-security').'<br><br><strong>'.__('Enable|Disable wp-admin BulletProof Mode', 'bulletproof-security').'</strong><br>'.__('The default setting is already set to: wp-admin BulletProof Mode Enabled. If you would like to disable wp-admin BulletProof Mode select wp-admin BulletProof Mode Disabled.', 'bulletproof-security').'<br><br><strong>'.__('Zip File Download Fix (Incapsula, Proxy, Other Cause):', 'bulletproof-security').'</strong><br>'.__('This option should only be set to On if you are seeing a 403 error and/or unable to download these Zip files: Custom Code Export Zip file, Login Security Table Export Zip file or the Setup Wizard Root htaccess file backup Zip file. The Setup Wizard Root htaccess file backup Zip file link is only displayed if BPS detects that your current Root htaccess file is not a BPS Root htaccess file. If you are still unable to download zip files after setting this option to On then you will need to whitelist your Proxy IP address in the Plugin Firewall Whitelist by Hostname (domain name) and IP Address tool under the Plugin Firewall Additional Whitelist Tools accordion tab. If that does not work then you will need to deactivate the Plugin Firewall temporarily, download the zip file and then activate the Plugin Firewall again.', 'bulletproof-security').'<br><br><strong>'.__('Multisite Hide|Display System Info Page for Subsites:', 'bulletproof-security').'</strong><br>'.__('This option is for Network|Multisite sites only. Choosing Hide System Info Page will hide the System Info menu link under the BPS navigational menus. Choosing Display System Info page will display the System Info menu link under the BPS navigational mensus.', 'bulletproof-security').'<br><br><strong>'.__('Network|Multisite Sitewide Login Security Settings', 'bulletproof-security').'</strong><br>'.__('This option is for Network|Multisite sites only. This is an independent option Form that creates and saves Login Security DB option settings for all Network sites when you click the Save Network LSM Options Sitewide button. If Login Security option settings have already been setup and saved for any Network site then those Login Security option settings will NOT be changed. If Login Security options settings have NOT already been setup and saved for any Network site then those Login Security option settings will be created and saved with these default settings: Max Login Attempts: 3, Automatic Lockout Time: 60, Manual Lockout Time: 60, Max DB Rows To Show: blank show all rows, Turn On|Turn Off: Turn On Login Security, Logging Options: Log Only Account Lockouts, Error Messages: Standard WP Login Errors, Attempts Remaining: Show Login Attempts Remaining, Password Reset: Enable Password Reset, Sort DB Rows: Ascending - Show Oldest Login First.', 'bulletproof-security').'<br><br><strong>'.__('Network|Multisite Sitewide JTC-Lite Settings', 'bulletproof-security').'</strong><br>'.__('This option is for Network|Multisite sites only. This is an independent option Form that creates and saves JTC-Lite DB option settings for all Network sites when you click the Save Network JTC Options Sitewide button. If JTC option settings have already been setup and saved for any Network site then those JTC option settings will not be changed. If JTC options settings have not already been setup and saved for any Network site then those JTC option settings will be created and saved with these default settings: JTC CAPTCHA: jtc, JTC ToolTip: Type/Enter: jtc, JTC Title|Text: Hover or click the text box below, Enable|Disable JTC Anti-Spam For These Forms: Login Form checkbox is checked and will display the JTC CAPTCHA text box on the Login Form.', 'bulletproof-security');
|
| 1114 |
echo $dialog_text;
|
| 1115 |
?>
|
| 1116 |
|
| 1192 |
<input type="submit" name="Submit-Zip-Download-Fix" class="button bps-button" style="margin:10px 0px 20px 0px;width:232px;height:auto;white-space:normal" value="<?php esc_attr_e('Save Zip File Download Fix Option', 'bulletproof-security') ?>" />
|
| 1193 |
</form>
|
| 1194 |
|
| 1195 |
+
<form name="muSysinfo" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/wizard/wizard.php#bps-tabs-2' ); ?>" method="post">
|
| 1196 |
+
<?php wp_nonce_field('bulletproof_security_options_mu_sysinfo'); ?>
|
| 1197 |
+
<?php $Mu_Sysinfo_page_options = get_option('bulletproof_security_options_mu_sysinfo'); ?>
|
| 1198 |
+
|
| 1199 |
+
<strong><label for="mu-sysinfo"><?php _e('Multisite Hide|Display System Info Page for Subsites:', 'bulletproof-security'); ?></label></strong><br />
|
| 1200 |
+
<select name="bulletproof_security_options_mu_sysinfo_select" class="form-300" style="margin-top:5px;">
|
| 1201 |
+
<option value="display" <?php selected('display', $Mu_Sysinfo_page_options['bps_sysinfo_hide_display']); ?>><?php _e('Display System Info Page', 'bulletproof-security'); ?></option>
|
| 1202 |
+
<option value="hide" <?php selected('hide', $Mu_Sysinfo_page_options['bps_sysinfo_hide_display']); ?>><?php _e('Hide System Info Page', 'bulletproof-security'); ?></option>
|
| 1203 |
+
</select><br />
|
| 1204 |
+
<input type="submit" name="Submit-MU-Sysinfo-Display" class="button bps-button" style="margin:10px 0px 20px 0px;width:232px;height:auto;white-space:normal" value="<?php esc_attr_e('Save Multisite Hide|Display Option', 'bulletproof-security') ?>" />
|
| 1205 |
+
</form>
|
| 1206 |
+
|
| 1207 |
<form name="bpsNetLSM" action="<?php echo admin_url( 'admin.php?page=bulletproof-security/admin/wizard/wizard.php#bps-tabs-2' ); ?>" method="post">
|
| 1208 |
<?php wp_nonce_field('bulletproof_security_net_lsm'); ?>
|
| 1209 |
<div>
|
| 1265 |
}
|
| 1266 |
}
|
| 1267 |
|
| 1268 |
+
// Network|Multisite: Multisite Hide|Display System Info Page for Subsites
|
| 1269 |
+
if ( isset( $_POST['Submit-MU-Sysinfo-Display'] ) && current_user_can('manage_options') ) {
|
| 1270 |
+
check_admin_referer( 'bulletproof_security_options_mu_sysinfo' );
|
| 1271 |
+
|
| 1272 |
+
$network_ids = wp_get_sites();
|
| 1273 |
+
|
| 1274 |
+
foreach ( $network_ids as $key => $value ) {
|
| 1275 |
+
|
| 1276 |
+
$net_id = $value['blog_id'];
|
| 1277 |
+
|
| 1278 |
+
$MU_Sysinfo_Options = array( 'bps_sysinfo_hide_display' => esc_html($_POST['bulletproof_security_options_mu_sysinfo_select']) );
|
| 1279 |
+
|
| 1280 |
+
foreach( $MU_Sysinfo_Options as $key => $value ) {
|
| 1281 |
+
update_blog_option( $net_id, 'bulletproof_security_options_mu_sysinfo', $MU_Sysinfo_Options);
|
| 1282 |
+
}
|
| 1283 |
+
}
|
| 1284 |
+
|
| 1285 |
+
echo $bps_topDiv;
|
| 1286 |
+
$text = '<font color="green"><strong>'.__('Multisite Hide|Display System Info Page for Subsites option saved.', 'bulletproof-security').'</strong></font>';
|
| 1287 |
+
echo $text;
|
| 1288 |
+
echo $bps_bottomDiv;
|
| 1289 |
+
}
|
| 1290 |
+
|
| 1291 |
// Network|Multisite: update/save Login Security DB option settings for all sites
|
| 1292 |
if ( isset( $_POST['Submit-Net-LSM'] ) && current_user_can('manage_options') ) {
|
| 1293 |
check_admin_referer( 'bulletproof_security_net_lsm' );
|
bulletproof-security.php
CHANGED
|
@@ -5,7 +5,7 @@ Plugin URI: https://forum.ait-pro.com/read-me-first/
|
|
| 5 |
Text Domain: bulletproof-security
|
| 6 |
Domain Path: /languages/
|
| 7 |
Description: <strong>Feature Highlights:</strong> Setup Wizard • MScan Malware Scanner • .htaccess Website Security Protection (Firewalls) • Security Logging|HTTP Error Logging • DB Backup • DB Table Prefix Changer • Login Security & Monitoring • JTC-Lite Login Form Bot Lockout Protection • Idle Session Logout (ISL) • Auth Cookie Expiration (ACE) • UI Theme Skin Changer • System Info: Extensive System, Server and Security Status Information • FrontEnd|BackEnd Maintenance Mode
|
| 8 |
-
Version: 3.
|
| 9 |
Author: AITpro Website Security
|
| 10 |
Author URI: https://forum.ait-pro.com/read-me-first/
|
| 11 |
*/
|
|
@@ -28,9 +28,9 @@ Author URI: https://forum.ait-pro.com/read-me-first/
|
|
| 28 |
*/
|
| 29 |
|
| 30 |
// BPS variables
|
| 31 |
-
define( 'BULLETPROOF_VERSION', '3.
|
| 32 |
-
$bps_last_version = '3.
|
| 33 |
-
$bps_version = '3.
|
| 34 |
$aitpro_bullet = '<img src="'.plugins_url('/bulletproof-security/admin/images/aitpro-bullet.png').'" style="padding:0px 3px 0px 3px;" />';
|
| 35 |
// Top div & bottom div
|
| 36 |
$bps_topDiv = '<div id="message" class="updated" style="background-color:#dfecf2;border:1px solid #999;-moz-border-radius-topleft:3px;-webkit-border-top-left-radius:3px;-khtml-border-top-left-radius:3px;border-top-left-radius:3px;-moz-border-radius-topright:3px;-webkit-border-top-right-radius:3px;-khtml-border-top-right-radius:3px;border-top-right-radius:3px;-webkit-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);-moz-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);"><p>';
|
|
@@ -41,11 +41,11 @@ $GDPR_Options = get_option('bulletproof_security_options_gdpr');
|
|
| 41 |
|
| 42 |
if ( $GDPR_Options['bps_gdpr_on_off'] != 'On' ) {
|
| 43 |
|
| 44 |
-
$bpsPro_remote_addr =
|
| 45 |
-
$bpsPro_http_client_ip =
|
| 46 |
-
$bpsPro_http_forwarded =
|
| 47 |
-
$bpsPro_http_x_forwarded_for =
|
| 48 |
-
$bpsPro_http_x_cluster_client_ip =
|
| 49 |
|
| 50 |
} else {
|
| 51 |
|
| 5 |
Text Domain: bulletproof-security
|
| 6 |
Domain Path: /languages/
|
| 7 |
Description: <strong>Feature Highlights:</strong> Setup Wizard • MScan Malware Scanner • .htaccess Website Security Protection (Firewalls) • Security Logging|HTTP Error Logging • DB Backup • DB Table Prefix Changer • Login Security & Monitoring • JTC-Lite Login Form Bot Lockout Protection • Idle Session Logout (ISL) • Auth Cookie Expiration (ACE) • UI Theme Skin Changer • System Info: Extensive System, Server and Security Status Information • FrontEnd|BackEnd Maintenance Mode
|
| 8 |
+
Version: 3.2
|
| 9 |
Author: AITpro Website Security
|
| 10 |
Author URI: https://forum.ait-pro.com/read-me-first/
|
| 11 |
*/
|
| 28 |
*/
|
| 29 |
|
| 30 |
// BPS variables
|
| 31 |
+
define( 'BULLETPROOF_VERSION', '3.2' );
|
| 32 |
+
$bps_last_version = '3.1';
|
| 33 |
+
$bps_version = '3.2';
|
| 34 |
$aitpro_bullet = '<img src="'.plugins_url('/bulletproof-security/admin/images/aitpro-bullet.png').'" style="padding:0px 3px 0px 3px;" />';
|
| 35 |
// Top div & bottom div
|
| 36 |
$bps_topDiv = '<div id="message" class="updated" style="background-color:#dfecf2;border:1px solid #999;-moz-border-radius-topleft:3px;-webkit-border-top-left-radius:3px;-khtml-border-top-left-radius:3px;border-top-left-radius:3px;-moz-border-radius-topright:3px;-webkit-border-top-right-radius:3px;-khtml-border-top-right-radius:3px;border-top-right-radius:3px;-webkit-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);-moz-box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);box-shadow: 3px 3px 5px -1px rgba(153,153,153,0.7);"><p>';
|
| 41 |
|
| 42 |
if ( $GDPR_Options['bps_gdpr_on_off'] != 'On' ) {
|
| 43 |
|
| 44 |
+
$bpsPro_remote_addr = @$_SERVER['REMOTE_ADDR'];
|
| 45 |
+
$bpsPro_http_client_ip = @$_SERVER['HTTP_CLIENT_IP'];
|
| 46 |
+
$bpsPro_http_forwarded = @$_SERVER['HTTP_FORWARDED'];
|
| 47 |
+
$bpsPro_http_x_forwarded_for = @$_SERVER['HTTP_X_FORWARDED_FOR'];
|
| 48 |
+
$bpsPro_http_x_cluster_client_ip = @$_SERVER['HTTP_X_CLUSTER_CLIENT_IP'];
|
| 49 |
|
| 50 |
} else {
|
| 51 |
|
includes/general-functions.php
CHANGED
|
@@ -867,8 +867,9 @@ function bpsPro_mu_tools_plugin_copy() {
|
|
| 867 |
$check_string = @file_get_contents($BPS_MU_tools_copy);
|
| 868 |
$pos1 = strpos( $check_string, 'Version: 1.0' );
|
| 869 |
$pos2 = strpos( $check_string, 'Version: 2.0' );
|
|
|
|
| 870 |
|
| 871 |
-
if ( $pos1 !== false || $pos2 !== false ) {
|
| 872 |
@copy($BPS_MU_tools, $BPS_MU_tools_copy);
|
| 873 |
}
|
| 874 |
}
|
|
@@ -977,7 +978,7 @@ function bpsPro_presave_mscan_options() {
|
|
| 977 |
update_option('bulletproof_security_options_MScan', $MS_Options);
|
| 978 |
|
| 979 |
if ( esc_html($_SERVER['QUERY_STRING']) == 'page=bulletproof-security/admin/wizard/wizard.php' ) {
|
| 980 |
-
echo $successTextBegin.$key.$mscan_successMessage.$successTextEnd;
|
| 981 |
}
|
| 982 |
}
|
| 983 |
|
|
@@ -987,7 +988,7 @@ function bpsPro_presave_mscan_options() {
|
|
| 987 |
if ( $MScan_options['bps_mscan_dirs'] != '' ) {
|
| 988 |
|
| 989 |
foreach ( $MScan_options['bps_mscan_dirs'] as $key => $value ) {
|
| 990 |
-
echo $successTextBegin.$key.$mscan_dir_successMessage.$successTextEnd;
|
| 991 |
}
|
| 992 |
}
|
| 993 |
}
|
|
@@ -1105,6 +1106,7 @@ function bpsPro_new_version_db_options_files_autoupdate() {
|
|
| 1105 |
// 2.0: New SBC Dismiss Notice check created: checks for redundant Browser caching code & the BPS NOCHECK Marker in BPS Custom Code
|
| 1106 |
delete_user_meta($user_id, 'bpsPro_ignore_speed_boost_notice');
|
| 1107 |
// 2.0: New Endurance Page Cache Dismiss Notice check created: A dismiss notice will only be displayed if: EPC is enabled and Cache level is 1,2,3,4
|
|
|
|
| 1108 |
delete_user_meta($user_id, 'bpsPro_ignore_EPC_plugin_notice');
|
| 1109 |
// 2.0: Delete these old Dismiss Notices permanently that are no longer being used
|
| 1110 |
delete_user_meta($user_id, 'bps_ignore_BLC_notice');
|
| 867 |
$check_string = @file_get_contents($BPS_MU_tools_copy);
|
| 868 |
$pos1 = strpos( $check_string, 'Version: 1.0' );
|
| 869 |
$pos2 = strpos( $check_string, 'Version: 2.0' );
|
| 870 |
+
$pos3 = strpos( $check_string, 'Version: 3.0' );
|
| 871 |
|
| 872 |
+
if ( $pos1 !== false || $pos2 !== false || $pos3 !== false ) {
|
| 873 |
@copy($BPS_MU_tools, $BPS_MU_tools_copy);
|
| 874 |
}
|
| 875 |
}
|
| 978 |
update_option('bulletproof_security_options_MScan', $MS_Options);
|
| 979 |
|
| 980 |
if ( esc_html($_SERVER['QUERY_STRING']) == 'page=bulletproof-security/admin/wizard/wizard.php' ) {
|
| 981 |
+
//echo $successTextBegin.$key.$mscan_successMessage.$successTextEnd;
|
| 982 |
}
|
| 983 |
}
|
| 984 |
|
| 988 |
if ( $MScan_options['bps_mscan_dirs'] != '' ) {
|
| 989 |
|
| 990 |
foreach ( $MScan_options['bps_mscan_dirs'] as $key => $value ) {
|
| 991 |
+
//echo $successTextBegin.$key.$mscan_dir_successMessage.$successTextEnd;
|
| 992 |
}
|
| 993 |
}
|
| 994 |
}
|
| 1106 |
// 2.0: New SBC Dismiss Notice check created: checks for redundant Browser caching code & the BPS NOCHECK Marker in BPS Custom Code
|
| 1107 |
delete_user_meta($user_id, 'bpsPro_ignore_speed_boost_notice');
|
| 1108 |
// 2.0: New Endurance Page Cache Dismiss Notice check created: A dismiss notice will only be displayed if: EPC is enabled and Cache level is 1,2,3,4
|
| 1109 |
+
// 3.2: No longer offering Setup Wizard AutoFix for the EPC plugin.
|
| 1110 |
delete_user_meta($user_id, 'bpsPro_ignore_EPC_plugin_notice');
|
| 1111 |
// 2.0: Delete these old Dismiss Notices permanently that are no longer being used
|
| 1112 |
delete_user_meta($user_id, 'bps_ignore_BLC_notice');
|
includes/hud-autofix-setup.php
CHANGED
|
@@ -10,7 +10,8 @@ if ( ! function_exists ('add_action') ) {
|
|
| 10 |
function bps_HUD_autofix_setup_WP_Dashboard() {
|
| 11 |
|
| 12 |
if ( current_user_can('manage_options') ) {
|
| 13 |
-
|
|
|
|
| 14 |
$w3tc_plugin = 'w3-total-cache/w3-total-cache.php';
|
| 15 |
$wpsc_plugin = 'wp-super-cache/wp-cache.php';
|
| 16 |
@bpsPro_w3tc_htaccess_check($w3tc_plugin);
|
|
@@ -72,7 +73,8 @@ function bpsPro_EPC_plugin_check() {
|
|
| 72 |
}
|
| 73 |
}
|
| 74 |
|
| 75 |
-
|
|
|
|
| 76 |
|
| 77 |
function bpsPro_EPC_plugin_nag_ignore() {
|
| 78 |
global $current_user;
|
| 10 |
function bps_HUD_autofix_setup_WP_Dashboard() {
|
| 11 |
|
| 12 |
if ( current_user_can('manage_options') ) {
|
| 13 |
+
// 3.2: No longer offering autofix for the EPC plugin.
|
| 14 |
+
//bpsPro_EPC_plugin_check();
|
| 15 |
$w3tc_plugin = 'w3-total-cache/w3-total-cache.php';
|
| 16 |
$wpsc_plugin = 'wp-super-cache/wp-cache.php';
|
| 17 |
@bpsPro_w3tc_htaccess_check($w3tc_plugin);
|
| 73 |
}
|
| 74 |
}
|
| 75 |
|
| 76 |
+
// 3.2: No longer offering autofix for the EPC plugin.
|
| 77 |
+
//add_action('admin_init', 'bpsPro_EPC_plugin_nag_ignore');
|
| 78 |
|
| 79 |
function bpsPro_EPC_plugin_nag_ignore() {
|
| 80 |
global $current_user;
|
readme.txt
CHANGED
|
@@ -4,7 +4,7 @@ Donate link: https://wordpress.org/support/view/plugin-reviews/bulletproof-secur
|
|
| 4 |
Tags: security, secure, malware scanner, login security, firewall, security plugin, wordpress security, login, bruteforce, backup, exploit, infection, protection, virus, anti-virus, logout, spam, anti-spam
|
| 5 |
Requires at least: 3.8
|
| 6 |
Tested up to: 4.9
|
| 7 |
-
Stable tag: 3.
|
| 8 |
License: GPLv2 or later
|
| 9 |
License URI: http://www.gnu.org/licenses/gpl-2.0.html
|
| 10 |
|
| 4 |
Tags: security, secure, malware scanner, login security, firewall, security plugin, wordpress security, login, bruteforce, backup, exploit, infection, protection, virus, anti-virus, logout, spam, anti-spam
|
| 5 |
Requires at least: 3.8
|
| 6 |
Tested up to: 4.9
|
| 7 |
+
Stable tag: 3.2
|
| 8 |
License: GPLv2 or later
|
| 9 |
License URI: http://www.gnu.org/licenses/gpl-2.0.html
|
| 10 |
|
