Version Description
- IP to Country database updated to November 4th 2014 version.
- Options export and import now also exports Country Blocking and Scan Schedule configuration.
- Scans fully documented at docs.wordfence.com. Link on 'Scan' page under heading.
- Live Traffic fully documented at docs.wordfence.com. Link on Live Traffic page.
- Falcon Engine/Wordfence Caching fully documented. Link on Performance Setup page.
- Blocked IPs, locking and throttling fully documented. Link on Blocked IPs page.
- Cellphone Sign-in fully documented. Link under title on Cellphone sign-in page.
- Country blocking fully documented. Link on Country blocking page.
- Scan Scheduling fully documented. Link on Scan Scheduling page under title.
- Whois and Advanced Blocking documented including how Live Traffic, Whois and Advanced blocking work together.
- Removed unnecessary text from several menu items and moved into official docs where needed.
Download this release
Release Info
Developer | mmaunder |
Plugin | Wordfence Security – Firewall & Malware Scan |
Version | 5.3.1 |
Comparing to | |
See all releases |
Code changes from version 5.2.9 to 5.3.1
- lib/GeoIP.dat +0 -0
- lib/menu_activity.php +1 -1
- lib/menu_blockedIPs.php +1 -1
- lib/menu_countryBlocking.php +2 -3
- lib/menu_options.php +1 -1
- lib/menu_rangeBlocking.php +1 -11
- lib/menu_scan.php +3 -3
- lib/menu_scanSchedule.php +1 -12
- lib/menu_sitePerf.php +1 -1
- lib/menu_twoFactor.php +4 -25
- lib/menu_whois.php +1 -4
- lib/pageTitle.php +1 -0
- lib/wfConfig.php +3 -0
- lib/wordfenceClass.php +9 -0
- readme.txt +16 -1
- wordfence.php +2 -2
lib/GeoIP.dat
CHANGED
Binary file
|
lib/menu_activity.php
CHANGED
@@ -17,7 +17,7 @@
|
|
17 |
</div>
|
18 |
</h2>
|
19 |
<br clear="both" />
|
20 |
-
|
21 |
<div class="wordfenceLive">
|
22 |
<table border="0" cellpadding="0" cellspacing="0">
|
23 |
<tr><td><h2>Wordfence Live Activity:</h2></td><td id="wfLiveStatus"></td></tr>
|
17 |
</div>
|
18 |
</h2>
|
19 |
<br clear="both" />
|
20 |
+
<a href="http://docs.wordfence.com/en/Live_traffic" target="_blank" class="wfhelp"></a><a href="http://docs.wordfence.com/en/Live_traffic" target="_blank">Learn more about Wordfence Live Traffic</a>
|
21 |
<div class="wordfenceLive">
|
22 |
<table border="0" cellpadding="0" cellspacing="0">
|
23 |
<tr><td><h2>Wordfence Live Activity:</h2></td><td id="wfLiveStatus"></td></tr>
|
lib/menu_blockedIPs.php
CHANGED
@@ -1,7 +1,7 @@
|
|
1 |
<div class="wordfenceModeElem" id="wordfenceMode_blockedIPs"></div>
|
2 |
<div class="wrap">
|
3 |
<?php require('menuHeader.php'); ?>
|
4 |
-
<?php $pageTitle = "Wordfence Blocked IPs"; include('pageTitle.php'); ?>
|
5 |
<div class="wordfenceLive">
|
6 |
<table border="0" cellpadding="0" cellspacing="0">
|
7 |
<tr><td><h2>Wordfence Live Activity:</h2></td><td id="wfLiveStatus"></td></tr>
|
1 |
<div class="wordfenceModeElem" id="wordfenceMode_blockedIPs"></div>
|
2 |
<div class="wrap">
|
3 |
<?php require('menuHeader.php'); ?>
|
4 |
+
<?php $helpLink="http://docs.wordfence.com/en/Blocked_IPs"; $helpLabel="Learn more about Blocked IPs"; $pageTitle = "Wordfence Blocked IPs"; include('pageTitle.php'); ?>
|
5 |
<div class="wordfenceLive">
|
6 |
<table border="0" cellpadding="0" cellspacing="0">
|
7 |
<tr><td><h2>Wordfence Live Activity:</h2></td><td id="wfLiveStatus"></td></tr>
|
lib/menu_countryBlocking.php
CHANGED
@@ -7,13 +7,12 @@ WFAD.countryMap = <?php echo json_encode($wfBulkCountries); ?>;
|
|
7 |
<div class="wordfenceModeElem" id="wordfenceMode_countryBlocking"></div>
|
8 |
<div class="wrap" id="paidWrap">
|
9 |
<?php require('menuHeader.php'); ?>
|
10 |
-
|
11 |
<?php if(! wfConfig::get('isPaid')){ ?>
|
12 |
<div class="wfPaidOnlyNotice">
|
13 |
<strong>Country Blocking is only available to Premium Members at this time</strong><br /><br />
|
14 |
Country Blocking is a premium feature because we have licensed a very accurate commercial geolocation database to provide this feature. If you would like to
|
15 |
-
activate this feature, simply <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options
|
16 |
-
page.
|
17 |
</div>
|
18 |
<?php } ?>
|
19 |
<?php if(wfConfig::get('cacheType') == 'falcon'){ ?>
|
7 |
<div class="wordfenceModeElem" id="wordfenceMode_countryBlocking"></div>
|
8 |
<div class="wrap" id="paidWrap">
|
9 |
<?php require('menuHeader.php'); ?>
|
10 |
+
<?php $pageTitle = "Block Selected Countries from Accessing your Site"; $helpLink="http://docs.wordfence.com/en/Country_blocking"; $helpLabel="Learn more about Country Blocking"; include('pageTitle.php'); ?>
|
11 |
<?php if(! wfConfig::get('isPaid')){ ?>
|
12 |
<div class="wfPaidOnlyNotice">
|
13 |
<strong>Country Blocking is only available to Premium Members at this time</strong><br /><br />
|
14 |
Country Blocking is a premium feature because we have licensed a very accurate commercial geolocation database to provide this feature. If you would like to
|
15 |
+
activate this feature, simply <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page. You can <a href="http://docs.wordfence.com/en/Country_blocking" target="_blank">learn more about Country Blocking on our documentation website</a>.
|
|
|
16 |
</div>
|
17 |
<?php } ?>
|
18 |
<?php if(wfConfig::get('cacheType') == 'falcon'){ ?>
|
lib/menu_options.php
CHANGED
@@ -7,7 +7,7 @@ var WFSLevels = <?php echo json_encode(wfConfig::$securityLevels); ?>;
|
|
7 |
<div class="wordfenceModeElem" id="wordfenceMode_options"></div>
|
8 |
<div class="wrap">
|
9 |
<?php require('menuHeader.php'); ?>
|
10 |
-
<?php $pageTitle = "Wordfence Options"; include('pageTitle.php'); ?>
|
11 |
<div class="wordfenceLive">
|
12 |
<table border="0" cellpadding="0" cellspacing="0">
|
13 |
<tr><td><h2>Wordfence Live Activity:</h2></td><td id="wfLiveStatus"></td></tr>
|
7 |
<div class="wordfenceModeElem" id="wordfenceMode_options"></div>
|
8 |
<div class="wrap">
|
9 |
<?php require('menuHeader.php'); ?>
|
10 |
+
<?php $helpLink="http://docs.wordfence.com/en/Wordfence_options"; $helpLabel="Learn more about Wordfence Options"; $pageTitle = "Wordfence Options"; include('pageTitle.php'); ?>
|
11 |
<div class="wordfenceLive">
|
12 |
<table border="0" cellpadding="0" cellspacing="0">
|
13 |
<tr><td><h2>Wordfence Live Activity:</h2></td><td id="wfLiveStatus"></td></tr>
|
lib/menu_rangeBlocking.php
CHANGED
@@ -1,20 +1,10 @@
|
|
1 |
<div class="wordfenceModeElem" id="wordfenceMode_rangeBlocking"></div>
|
2 |
<div class="wrap" id="paidWrap">
|
3 |
<?php require('menuHeader.php'); ?>
|
4 |
-
<?php $pageTitle = "Advanced Blocking"; include('pageTitle.php'); ?>
|
5 |
<div class="wordfenceWrap" style="margin: 20px 20px 20px 30px;">
|
6 |
<p>
|
7 |
-
<div style="width: 600px; margin-bottom: 15px;">
|
8 |
<?php if(! wfConfig::get('firewallEnabled')){ ?><div style="color: #F00; font-weight: bold;">Firewall is disabled. You can enable it on the <a href="admin.php?page=WordfenceSecOpt">Wordfence Options page</a> at the top.</div><br /><?php } ?>
|
9 |
-
This page lets you block visitors who are from a range of IP addresses or are using a certain web browser or browser pattern.
|
10 |
-
You can also block a certain web browser that is visiting your site from a certain range of IP addresses. This can be useful when
|
11 |
-
blocking someone pretending to be Google and using a specific Internet Service Provider or Web Host.<br /><br />
|
12 |
-
<ul style="list-style-type:circle;">
|
13 |
-
<li>To block a range of IP addresses, enter the range and leave the User-Agent field blank.</li>
|
14 |
-
<li>To block a certain kind of web browser, enter the browser or browser pattern in the User-Agent field and leave the IP range blank</li>
|
15 |
-
<li>To block a certain kind of web browser that is accessing your site from a certain range of IP addresses, enter both the IP address range and the pattern to use to match the web browser</li>
|
16 |
-
</ul>
|
17 |
-
</div>
|
18 |
<table class="wfConfigForm">
|
19 |
<tr><th>Block anyone that has an IP address in this range:</th><td><input id="ipRange" type="text" size="30" maxlength="255" value="<?php if( isset( $_GET['wfBlockRange'] ) && $_GET['wfBlockRange']){ echo wp_kses($_GET['wfBlockRange'], array()); } ?>" onkeyup="WFAD.calcRangeTotal();"> <span id="wfShowRangeTotal"></span></td></tr>
|
20 |
<tr><td></td><td style="padding-bottom: 15px;"><strong>Examples:</strong> 192.168.200.200 - 192.168.200.220</td></tr>
|
1 |
<div class="wordfenceModeElem" id="wordfenceMode_rangeBlocking"></div>
|
2 |
<div class="wrap" id="paidWrap">
|
3 |
<?php require('menuHeader.php'); ?>
|
4 |
+
<?php $helpLink="http://docs.wordfence.com/en/Advanced_Blocking"; $helpLabel="Learn more about Advanced Blocking"; $pageTitle = "Advanced Blocking"; include('pageTitle.php'); ?>
|
5 |
<div class="wordfenceWrap" style="margin: 20px 20px 20px 30px;">
|
6 |
<p>
|
|
|
7 |
<?php if(! wfConfig::get('firewallEnabled')){ ?><div style="color: #F00; font-weight: bold;">Firewall is disabled. You can enable it on the <a href="admin.php?page=WordfenceSecOpt">Wordfence Options page</a> at the top.</div><br /><?php } ?>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
8 |
<table class="wfConfigForm">
|
9 |
<tr><th>Block anyone that has an IP address in this range:</th><td><input id="ipRange" type="text" size="30" maxlength="255" value="<?php if( isset( $_GET['wfBlockRange'] ) && $_GET['wfBlockRange']){ echo wp_kses($_GET['wfBlockRange'], array()); } ?>" onkeyup="WFAD.calcRangeTotal();"> <span id="wfShowRangeTotal"></span></td></tr>
|
10 |
<tr><td></td><td style="padding-bottom: 15px;"><strong>Examples:</strong> 192.168.200.200 - 192.168.200.220</td></tr>
|
lib/menu_scan.php
CHANGED
@@ -1,18 +1,18 @@
|
|
1 |
<div class="wordfenceModeElem" id="wordfenceMode_scan"></div>
|
2 |
<div class="wrap wordfence">
|
3 |
<?php require('menuHeader.php'); ?>
|
4 |
-
<?php $pageTitle = "Wordfence Scan"; include('pageTitle.php'); ?>
|
5 |
<div class="wordfenceWrap">
|
6 |
<div class="wordfenceScanButton">
|
7 |
<table border="0" cellpadding="0" cellspacing="0" style="width: 800px;">
|
8 |
<tr>
|
9 |
<td style="width: 250px; padding-top: 10px;">
|
10 |
<input type="button" value="Start a Wordfence Scan" id="wfStartScanButton1" class="wfStartScanButton button-primary" onclick="wordfenceAdmin.startScan();" /><br />
|
11 |
-
<a href="#" onclick="WFAD.killScan(); return false;" style="font-size: 10px; color: #AAA;">Click
|
12 |
</td>
|
13 |
<td>
|
14 |
<div style="border: 1px solid #CCC; padding: 4px;">
|
15 |
-
You can <a href="#" onclick="WFAD.startTourAgain(); return false;">start the tour again</a>, <a href="http://www.wordfence.com/subscribe-to-the-wordfence-email-list/" target="_blank">subscribe to get WordPress Security Alerts and Product News</a> or <a target="_blank" href="http://support.wordfence.com/">visit our support website help.</a> Love Wordfence? You can help by doing two simple things: <a href="http://wordpress.org/extend/plugins/wordfence/" target="_blank">Go to WordPress.org now and give this plugin a 5★ rating</a>. Blog about Wordfence and link to the <a href="http://wordpress.org/extend/plugins/wordfence/" target="_blank">plugin page</a> or <a href="http://www.wordfence.com/" target="_blank">www.wordfence.com</a>. Spreading the word helps us keep the best features free.
|
16 |
</div>
|
17 |
</td>
|
18 |
</tr>
|
1 |
<div class="wordfenceModeElem" id="wordfenceMode_scan"></div>
|
2 |
<div class="wrap wordfence">
|
3 |
<?php require('menuHeader.php'); ?>
|
4 |
+
<?php $pageTitle = "Wordfence Scan"; $helpLink="http://docs.wordfence.com/en/Wordfence_scanning"; $helpLabel="Learn more about scanning"; include('pageTitle.php'); ?>
|
5 |
<div class="wordfenceWrap">
|
6 |
<div class="wordfenceScanButton">
|
7 |
<table border="0" cellpadding="0" cellspacing="0" style="width: 800px;">
|
8 |
<tr>
|
9 |
<td style="width: 250px; padding-top: 10px;">
|
10 |
<input type="button" value="Start a Wordfence Scan" id="wfStartScanButton1" class="wfStartScanButton button-primary" onclick="wordfenceAdmin.startScan();" /><br />
|
11 |
+
<a href="#" onclick="WFAD.killScan(); return false;" style="font-size: 10px; color: #AAA;">Click to kill the current scan.</a>
|
12 |
</td>
|
13 |
<td>
|
14 |
<div style="border: 1px solid #CCC; padding: 4px;">
|
15 |
+
<a href="http://docs.wordfence.com/en/Wordfence_scanning" target="_blank" class="wfhelp"></a><a href="http://docs.wordfence.com/en/Wordfence_scanning" target="_blank">Read our scanning documentation</a>. You can also <a href="#" onclick="WFAD.startTourAgain(); return false;">start the tour again</a>, <a href="http://www.wordfence.com/subscribe-to-the-wordfence-email-list/" target="_blank">subscribe to get WordPress Security Alerts and Product News</a> or <a target="_blank" href="http://support.wordfence.com/">visit our support website help.</a> Love Wordfence? You can help by doing two simple things: <a href="http://wordpress.org/extend/plugins/wordfence/" target="_blank">Go to WordPress.org now and give this plugin a 5★ rating</a>. Blog about Wordfence and link to the <a href="http://wordpress.org/extend/plugins/wordfence/" target="_blank">plugin page</a> or <a href="http://www.wordfence.com/" target="_blank">www.wordfence.com</a>. Spreading the word helps us keep the best features free.
|
16 |
</div>
|
17 |
</td>
|
18 |
</tr>
|
lib/menu_scanSchedule.php
CHANGED
@@ -1,7 +1,7 @@
|
|
1 |
<div class="wordfenceModeElem" id="wordfenceMode_scanScheduling"></div>
|
2 |
<div class="wrap" id="paidWrap">
|
3 |
<?php require('menuHeader.php'); ?>
|
4 |
-
|
5 |
<?php if(! wfConfig::get('isPaid')){ ?>
|
6 |
<div class="wfPaidOnlyNotice">
|
7 |
<strong>Scan Scheduling is only available to Premium Members at this time</strong><br /><br />
|
@@ -24,17 +24,6 @@
|
|
24 |
?>
|
25 |
</span>
|
26 |
</p>
|
27 |
-
<p style="width: 600px;">
|
28 |
-
Wordfence provides continuous real-time security for your site. Occasionally we run a full scan of all files, posts, pages, comments, user password and other site components.
|
29 |
-
The scheduler below lets you choose when those full scans will run.<br /><br />
|
30 |
-
|
31 |
-
We have displayed the current time your WordPress site uses above.
|
32 |
-
You can go to the Settings/General menu to change your timezone.
|
33 |
-
Use the links provided as shortcuts to select scan times. Try clicking
|
34 |
-
the links several times to advance the time. You can also manually select scan start times for each day.
|
35 |
-
<br /><br />
|
36 |
-
NOTE: Scans run within 1 hour after scheduled time. E.g. A scan scheduled for 1pm will run between 1pm and 2pm. This prevents a stampede on our scanning server at the top of the hour.
|
37 |
-
</p>
|
38 |
<p>
|
39 |
<strong>Scan mode:</strong><select id="schedMode" onchange="WFAD.sched_modeChange();">
|
40 |
<option value="auto"<?php echo (wfConfig::get('schedMode') == 'auto' ? ' selected' : ''); ?>>Let Wordfence automatically schedule scans (recommended)</option>
|
1 |
<div class="wordfenceModeElem" id="wordfenceMode_scanScheduling"></div>
|
2 |
<div class="wrap" id="paidWrap">
|
3 |
<?php require('menuHeader.php'); ?>
|
4 |
+
<?php $pageTitle = "Schedule when Wordfence Scans Occur"; $helpLink="http://docs.wordfence.com/en/Wordfence_scan_scheduling"; $helpLabel="Learn more about Scheduling Wordfence Scans"; include('pageTitle.php'); ?>
|
5 |
<?php if(! wfConfig::get('isPaid')){ ?>
|
6 |
<div class="wfPaidOnlyNotice">
|
7 |
<strong>Scan Scheduling is only available to Premium Members at this time</strong><br /><br />
|
24 |
?>
|
25 |
</span>
|
26 |
</p>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
27 |
<p>
|
28 |
<strong>Scan mode:</strong><select id="schedMode" onchange="WFAD.sched_modeChange();">
|
29 |
<option value="auto"<?php echo (wfConfig::get('schedMode') == 'auto' ? ' selected' : ''); ?>>Let Wordfence automatically schedule scans (recommended)</option>
|
lib/menu_sitePerf.php
CHANGED
@@ -4,7 +4,7 @@ $w = new wfConfig();
|
|
4 |
<div class="wordfenceModeElem" id="wordfenceMode_caching"></div>
|
5 |
<div class="wrap">
|
6 |
<?php require('menuHeader.php'); ?>
|
7 |
-
<?php $pageTitle = "Your Site Performance"; include('pageTitle.php'); ?>
|
8 |
<div class="wordfenceWrap" style="margin: 20px 20px 20px 30px;">
|
9 |
<h2>Caching</h2>
|
10 |
<table border="0">
|
4 |
<div class="wordfenceModeElem" id="wordfenceMode_caching"></div>
|
5 |
<div class="wrap">
|
6 |
<?php require('menuHeader.php'); ?>
|
7 |
+
<?php $pageTitle = "Your Site Performance"; $helpLink="http://docs.wordfence.com/en/Falcon_Cache"; $helpLabel="Learn more about Wordfence Caching"; include('pageTitle.php'); ?>
|
8 |
<div class="wordfenceWrap" style="margin: 20px 20px 20px 30px;">
|
9 |
<h2>Caching</h2>
|
10 |
<table border="0">
|
lib/menu_twoFactor.php
CHANGED
@@ -1,42 +1,21 @@
|
|
1 |
<div class="wordfenceModeElem" id="wordfenceMode_twoFactor"></div>
|
2 |
<div class="wrap" id="paidWrap">
|
3 |
<?php require('menuHeader.php'); ?>
|
4 |
-
|
5 |
<?php if(! wfConfig::get('isPaid')){ ?>
|
6 |
<div class="wfPaidOnlyNotice">
|
7 |
<strong>Cellphone Sign-in is only available to Premium Members at this time</strong><br /><br />
|
8 |
Cellphone Sign-in is a premium feature because we are charged per SMS we send when a user signs in. If you would like to
|
9 |
-
activate this feature, simply <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options
|
10 |
-
|
|
|
11 |
</div>
|
12 |
<?php } ?>
|
13 |
|
14 |
<div class="wordfenceWrap" style="margin: 20px 20px 20px 30px;">
|
15 |
<p style="width: 500px;">
|
16 |
-
Wordfence's Cellphone Sign-in uses a technique called "Two Factor Authentication" which is used by banks, government agencies and military world-wide as one of the most secure forms of remote system authentication.
|
17 |
-
It's now available from Wordfence for your WordPress website. "Two Factor" relies on two things: Something you know (your password) and something you have (your cellphone).
|
18 |
-
To access your website, you need to know your password and have your cellphone with you.
|
19 |
-
<br /><br />
|
20 |
-
Cellphone sign-in is a two step sign-in process. When you enable this feature for a member, they first sign-in using their username and password.
|
21 |
-
Then they receive an SMS on their cellphone containing a code. Then they sign in again using their username, and they reenter their
|
22 |
-
password with a space and the code they received at the end of the password.
|
23 |
-
<br /><br />
|
24 |
-
Cellphone Sign-in eliminates all common forms of brute force hacking. For a hacker to access a user account with Cellphone Sign-in enabled, they would have to steal
|
25 |
-
a member's cellphone to access their account.
|
26 |
-
We recommend you enable Cellphone Sign-in for all Administrator level accounts.
|
27 |
</p>
|
28 |
<p>
|
29 |
-
To enable Cellphone Sign-in Authentication for a user account:
|
30 |
-
<ol>
|
31 |
-
<li>Enter the username.</li>
|
32 |
-
<li>Enter a phone number where the code will be sent when the member wants to sign in.</li>
|
33 |
-
<li>Hit the enable button.</li>
|
34 |
-
<li>An activation code is sent to the member's phone.</li>
|
35 |
-
<li>Get the activation code from the member and enter it next to the username in the list below.</li>
|
36 |
-
<li>Click the "Enable" button to enable Cellphone Sign-in for that member.</li>
|
37 |
-
<li>From now on the user will only be able to sign-in by using Cellphone Sign-in.</li>
|
38 |
-
</ol>
|
39 |
-
<br />
|
40 |
<table border="0">
|
41 |
<tr><td>Enter a username to enable Cellphone Sign-in:</td><td><input type="text" id="wfUsername" value="" size="20" /></td></tr>
|
42 |
<tr><td>Enter a phone number where the code will be sent:</td><td><input type="text" id="wfPhone" value="" size="20" />Format: +1-123-555-5034</td></tr>
|
1 |
<div class="wordfenceModeElem" id="wordfenceMode_twoFactor"></div>
|
2 |
<div class="wrap" id="paidWrap">
|
3 |
<?php require('menuHeader.php'); ?>
|
4 |
+
<?php $pageTitle = "Cellphone Sign-in"; $helpLink="http://docs.wordfence.com/en/Cellphone_sign-in"; $helpLabel="Learn more about Cellphone Sign-in"; include('pageTitle.php'); ?>
|
5 |
<?php if(! wfConfig::get('isPaid')){ ?>
|
6 |
<div class="wfPaidOnlyNotice">
|
7 |
<strong>Cellphone Sign-in is only available to Premium Members at this time</strong><br /><br />
|
8 |
Cellphone Sign-in is a premium feature because we are charged per SMS we send when a user signs in. If you would like to
|
9 |
+
activate this feature, simply <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page.
|
10 |
+
<br /><br />
|
11 |
+
Wordfence's Cellphone Sign-in uses a technique called "Two Factor Authentication" which is used by banks, government agencies and military world-wide as one of the most secure forms of remote system authentication. It's now available from Wordfence for your WordPress website. We recommend you enable Cellphone Sign-in for all Administrator level accounts. You can <a href="http://docs.wordfence.com/en/Cellphone_sign-in" target="_blank">learn more about Cellphone Sign-in on our documentation website</a>.
|
12 |
</div>
|
13 |
<?php } ?>
|
14 |
|
15 |
<div class="wordfenceWrap" style="margin: 20px 20px 20px 30px;">
|
16 |
<p style="width: 500px;">
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
17 |
</p>
|
18 |
<p>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
19 |
<table border="0">
|
20 |
<tr><td>Enter a username to enable Cellphone Sign-in:</td><td><input type="text" id="wfUsername" value="" size="20" /></td></tr>
|
21 |
<tr><td>Enter a phone number where the code will be sent:</td><td><input type="text" id="wfPhone" value="" size="20" />Format: +1-123-555-5034</td></tr>
|
lib/menu_whois.php
CHANGED
@@ -1,11 +1,8 @@
|
|
1 |
<div class="wordfenceModeElem" id="wordfenceMode_whois"></div>
|
2 |
<div class="wrap" id="paidWrap">
|
3 |
<?php require('menuHeader.php'); ?>
|
4 |
-
<?php $pageTitle = "WHOIS Lookup"; include('pageTitle.php'); ?>
|
5 |
<div class="wordfenceWrap" style="margin: 20px 20px 20px 30px;">
|
6 |
-
<p style="width: 600px;">
|
7 |
-
Wordfence WHOIS queries the WHOIS servers on the Internet and gets information about domain name or IP address owners. This helps you determine who is hacking your site and helps you report them to the relevant authorities. If you see a malicious IP address, do a WHOIS lookup, find out who is responsible for that IP address and send an email reporting them to the 'abuse' email address provided.<br /><br />
|
8 |
-
</p>
|
9 |
<?php
|
10 |
if(! function_exists('fsockopen')){
|
11 |
?>
|
1 |
<div class="wordfenceModeElem" id="wordfenceMode_whois"></div>
|
2 |
<div class="wrap" id="paidWrap">
|
3 |
<?php require('menuHeader.php'); ?>
|
4 |
+
<?php $pageTitle = "WHOIS Lookup"; $helpLink="http://docs.wordfence.com/en/Whois_Lookup"; $helpLabel="Learn more about Whois Lookups"; include('pageTitle.php'); ?>
|
5 |
<div class="wordfenceWrap" style="margin: 20px 20px 20px 30px;">
|
|
|
|
|
|
|
6 |
<?php
|
7 |
if(! function_exists('fsockopen')){
|
8 |
?>
|
lib/pageTitle.php
CHANGED
@@ -1 +1,2 @@
|
|
1 |
<div class="wordfence-lock-icon wordfence-icon32"><br /></div><h2 id="wfHeading"><?php echo $pageTitle; ?></h2>
|
|
1 |
<div class="wordfence-lock-icon wordfence-icon32"><br /></div><h2 id="wfHeading"><?php echo $pageTitle; ?></h2>
|
2 |
+
<div style="padding-left: 7px;"><a href="<?php echo $helpLink; ?>" target="_blank" class="wfhelp"></a><a href="<?php echo $helpLink; ?>" target="_blank"><?php echo $helpLabel; ?></a></div>
|
lib/wfConfig.php
CHANGED
@@ -444,6 +444,9 @@ class wfConfig {
|
|
444 |
$ret[] = $key;
|
445 |
}
|
446 |
}
|
|
|
|
|
|
|
447 |
return $ret;
|
448 |
}
|
449 |
public static function parseOptions(){
|
444 |
$ret[] = $key;
|
445 |
}
|
446 |
}
|
447 |
+
foreach(array('cbl_action', 'cbl_countries', 'cbl_redirURL', 'cbl_loggedInBlocked', 'cbl_loginFormBlocked', 'cbl_restOfSiteBlocked', 'cbl_bypassRedirURL', 'cbl_bypassRedirDest', 'cbl_bypassViewURL') as $key){
|
448 |
+
$ret[] = $key;
|
449 |
+
}
|
450 |
return $ret;
|
451 |
}
|
452 |
public static function parseOptions(){
|
lib/wordfenceClass.php
CHANGED
@@ -2186,6 +2186,9 @@ class wordfence {
|
|
2186 |
foreach($keys as $key){
|
2187 |
$export[$key] = wfConfig::get($key, '');
|
2188 |
}
|
|
|
|
|
|
|
2189 |
try {
|
2190 |
$api = new wfAPI(wfConfig::get('apiKey'), wfUtils::getWPVersion());
|
2191 |
$res = $api->call('export_options', array(), $export);
|
@@ -2213,6 +2216,12 @@ class wordfence {
|
|
2213 |
$totalSet++;
|
2214 |
}
|
2215 |
}
|
|
|
|
|
|
|
|
|
|
|
|
|
2216 |
return $totalSet;
|
2217 |
} else if($res['err']){
|
2218 |
throw new Exception($res['err']);
|
2186 |
foreach($keys as $key){
|
2187 |
$export[$key] = wfConfig::get($key, '');
|
2188 |
}
|
2189 |
+
$export['scanScheduleJSON'] = json_encode(wfConfig::get_ser('scanSched', array()));
|
2190 |
+
$export['schedMode'] = wfConfig::get('schedMode', '');
|
2191 |
+
|
2192 |
try {
|
2193 |
$api = new wfAPI(wfConfig::get('apiKey'), wfUtils::getWPVersion());
|
2194 |
$res = $api->call('export_options', array(), $export);
|
2216 |
$totalSet++;
|
2217 |
}
|
2218 |
}
|
2219 |
+
if(isset($res['options']['scanScheduleJSON']) && isset($res['options']['schedMode'])){
|
2220 |
+
$scanSched = json_decode($res['options']['scanScheduleJSON']);
|
2221 |
+
wfConfig::set_ser('scanSched', $scanSched);
|
2222 |
+
wfConfig::set('schedMode', $res['options']['schedMode']);
|
2223 |
+
$totalSet += 2;
|
2224 |
+
}
|
2225 |
return $totalSet;
|
2226 |
} else if($res['err']){
|
2227 |
throw new Exception($res['err']);
|
readme.txt
CHANGED
@@ -3,7 +3,7 @@ Contributors: mmaunder
|
|
3 |
Tags: wordpress, security, performance, speed, caching, cache, caching plugin, wordpress cache, wordpress caching, wordpress security, security plugin, secure, anti-virus, malware, firewall, antivirus, virus, google safe browsing, phishing, scrapers, hacking, wordfence, securty, secrity, secure, two factor, cellphone sign-in, cellphone signin, cellphone, twofactor, security, secure, htaccess, login, log, users, login alerts, lock, chmod, maintenance, plugin, private, privacy, protection, permissions, 503, base64, injection, code, encode, script, attack, hack, hackers, block, blocked, prevent, prevention, RFI, XSS, CRLF, CSRF, SQL Injection, vulnerability, website security, WordPress security, security log, logging, HTTP log, error log, login security, personal security, infrastructure security, firewall security, front-end security, web server security, proxy security, reverse proxy security, secure website, secure login, two factor security, maximum login security, heartbleed, heart bleed, heartbleed vulnerability, openssl vulnerability, nginx, litespeed, php5-fpm, woocommerce support, woocommerce caching
|
4 |
Requires at least: 3.3.1
|
5 |
Tested up to: 4.0
|
6 |
-
Stable tag: 5.
|
7 |
|
8 |
Wordfence Security is a free enterprise class security and performance plugin that makes your site up to 50 times faster and more secure.
|
9 |
|
@@ -13,6 +13,8 @@ Wordfence starts by checking if your site is already infected. We do a deep serv
|
|
13 |
|
14 |
Wordfence Security is 100% free. We also offer a Premium API key that gives you access to our premium support ticketing system at [support.wordfence.com](http://support.wordfence.com/) along with two factor authentication via SMS, country blocking and the ability to schedule scans for specific times.
|
15 |
|
|
|
|
|
16 |
This is a brief introductory video for Wordfence:
|
17 |
|
18 |
[vimeo http://vimeo.com/70908504]
|
@@ -163,6 +165,19 @@ cause a security hole on your site.
|
|
163 |
|
164 |
== Changelog ==
|
165 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
166 |
= 5.2.9 =
|
167 |
* Added ability to export Wordfence settings and reimport on one or many sites using secure token.
|
168 |
* Added API function to programatically import Wordfence settings from another WordPress site.
|
3 |
Tags: wordpress, security, performance, speed, caching, cache, caching plugin, wordpress cache, wordpress caching, wordpress security, security plugin, secure, anti-virus, malware, firewall, antivirus, virus, google safe browsing, phishing, scrapers, hacking, wordfence, securty, secrity, secure, two factor, cellphone sign-in, cellphone signin, cellphone, twofactor, security, secure, htaccess, login, log, users, login alerts, lock, chmod, maintenance, plugin, private, privacy, protection, permissions, 503, base64, injection, code, encode, script, attack, hack, hackers, block, blocked, prevent, prevention, RFI, XSS, CRLF, CSRF, SQL Injection, vulnerability, website security, WordPress security, security log, logging, HTTP log, error log, login security, personal security, infrastructure security, firewall security, front-end security, web server security, proxy security, reverse proxy security, secure website, secure login, two factor security, maximum login security, heartbleed, heart bleed, heartbleed vulnerability, openssl vulnerability, nginx, litespeed, php5-fpm, woocommerce support, woocommerce caching
|
4 |
Requires at least: 3.3.1
|
5 |
Tested up to: 4.0
|
6 |
+
Stable tag: 5.3.1
|
7 |
|
8 |
Wordfence Security is a free enterprise class security and performance plugin that makes your site up to 50 times faster and more secure.
|
9 |
|
13 |
|
14 |
Wordfence Security is 100% free. We also offer a Premium API key that gives you access to our premium support ticketing system at [support.wordfence.com](http://support.wordfence.com/) along with two factor authentication via SMS, country blocking and the ability to schedule scans for specific times.
|
15 |
|
16 |
+
You can find our official documentation at [docs.wordfence.com](http://docs.wordfence.com/) and our Frequently Asked Questions on our support portal at [support.wordfence.com](https://support.wordfence.com/solution/categories/1000023037/folders/1000035543). We are also active in our community support forums on [wordpress.org](https://wordpress.org/support/plugin/wordfence) if you are one of our free users.
|
17 |
+
|
18 |
This is a brief introductory video for Wordfence:
|
19 |
|
20 |
[vimeo http://vimeo.com/70908504]
|
165 |
|
166 |
== Changelog ==
|
167 |
|
168 |
+
= 5.3.1 =
|
169 |
+
* IP to Country database updated to November 4th 2014 version.
|
170 |
+
* Options export and import now also exports Country Blocking and Scan Schedule configuration.
|
171 |
+
* Scans fully documented at docs.wordfence.com. Link on 'Scan' page under heading.
|
172 |
+
* Live Traffic fully documented at docs.wordfence.com. Link on Live Traffic page.
|
173 |
+
* Falcon Engine/Wordfence Caching fully documented. Link on Performance Setup page.
|
174 |
+
* Blocked IPs, locking and throttling fully documented. Link on Blocked IPs page.
|
175 |
+
* Cellphone Sign-in fully documented. Link under title on Cellphone sign-in page.
|
176 |
+
* Country blocking fully documented. Link on Country blocking page.
|
177 |
+
* Scan Scheduling fully documented. Link on Scan Scheduling page under title.
|
178 |
+
* Whois and Advanced Blocking documented including how Live Traffic, Whois and Advanced blocking work together.
|
179 |
+
* Removed unnecessary text from several menu items and moved into official docs where needed.
|
180 |
+
|
181 |
= 5.2.9 =
|
182 |
* Added ability to export Wordfence settings and reimport on one or many sites using secure token.
|
183 |
* Added API function to programatically import Wordfence settings from another WordPress site.
|
wordfence.php
CHANGED
@@ -4,13 +4,13 @@ Plugin Name: Wordfence Security
|
|
4 |
Plugin URI: http://www.wordfence.com/
|
5 |
Description: Wordfence Security - Anti-virus, Firewall and High Speed Cache
|
6 |
Author: Wordfence
|
7 |
-
Version: 5.
|
8 |
Author URI: http://www.wordfence.com/
|
9 |
*/
|
10 |
if(defined('WP_INSTALLING') && WP_INSTALLING){
|
11 |
return;
|
12 |
}
|
13 |
-
define('WORDFENCE_VERSION', '5.
|
14 |
if(get_option('wordfenceActivated') != 1){
|
15 |
add_action('activated_plugin','wordfence_save_activation_error'); function wordfence_save_activation_error(){ update_option('wf_plugin_act_error', ob_get_contents()); }
|
16 |
}
|
4 |
Plugin URI: http://www.wordfence.com/
|
5 |
Description: Wordfence Security - Anti-virus, Firewall and High Speed Cache
|
6 |
Author: Wordfence
|
7 |
+
Version: 5.3.1
|
8 |
Author URI: http://www.wordfence.com/
|
9 |
*/
|
10 |
if(defined('WP_INSTALLING') && WP_INSTALLING){
|
11 |
return;
|
12 |
}
|
13 |
+
define('WORDFENCE_VERSION', '5.3.1');
|
14 |
if(get_option('wordfenceActivated') != 1){
|
15 |
add_action('activated_plugin','wordfence_save_activation_error'); function wordfence_save_activation_error(){ update_option('wf_plugin_act_error', ob_get_contents()); }
|
16 |
}
|