Free Sucuri WordPress Plugin Gets New Features

18 comments

1. what’s the path to access the “post-hack” options in the premium version of the plugin?

   1. If you’re running the latest version which is available at http://wordpress.sucuri.net for existing Sucuri users, you will see a new menu item for the post-hack.

2. These are really nice additions. I was asked to test the plugin a while ago and report back to someone on whether it was worth using or not. My opinion at the time was that it wasn’t of much use as it didn’t seem to do anything particularly useful. These additions change that. I will now be recommending this plugin to anyone who asks about security plugins.

   1. Thank you, Ryan! We’re working hard to add relevant features while reducing the noise you find in some alternative plugins. If you have recommendations, feel free to let us know anytime!

      1. This is outside the scope of your plugin, but I’ll mention the idea here anyway ….

         A system which checks the file hashes, but from OUTSIDE of the WordPress installation, preferably from a different server entirely (via read only SSH) or from another user account on the same server would be very useful. This would avoid the problem of hackers catering for your plugin during their attacks.

         The hash checks from within the plugin are most likely sufficient, but it’s not the perfect solution for those looking for an uber locked down/monitored system.

         I have done work with governments and other organisations who are hyper aware of security issues and would probably pay good money for a product like that.

3. Nice guys good to see innovation oozing out 🙂

4. Does the WordPress integrity check work with all international WP versions or just with the original US version?

   1. Want to know that as well! Thanks 🙂

   2. Yes, it does! Or it should at least. If you see any issues, let us know.

5. I wonder if it this becomes possible: what would stop a hacker if it gets access and modifies the sucuri plugin and fools the end-user into thinking all is well? I suppose there is only so much that can be done with a plugin.

   1. Yes, there is only so much we can do in there. For a more comprehensive solution, you would need an external firewall, like our CloudProxy WAF: http://cloudproxy.sucuri.net

6. I would like to know how to disable this feature. I find it quite annoying, and for my site not necessary.

   1. Sorry should have made myself clearer…just the last user login feature.

7. I’m constantly looking for a security/antivirus/malware plugin that will alert me to malware on my site that I may not have caught. For me, the alerts are a top priority as I can remove issues myself. A plugin that cleans up those files for me, that’s just gravy, but not necessary.

   Just a few hours ago, one of my hobby sites was hacked; it had 2 new php files uploaded and the header.php in WooThemes’ OnTopic theme was modified… …it’s a new site, hardly any traffic at all, so I decided to hold off on cleaning things up and instead, try testing all the security/malware/antivirus plugins available.

   Sucuri scanned my site and gave me a clean bill of health. No malicious or suspicious anything found anywhere. Quettera did the same. So did AntiVirus. I tried a fourth but the plugin itself failed and wouldn’t let me access any of it’s admin pages to run an actual scan.

   As for the hack itself:
   – The r57shell.php file was uploaded to my wp-content and renamed to test.php. Easy to find.
   – There was a new file called Cp57aDqRa899.php in my public_html directory, which was really easy to spot by eye as well.
   – And finally, the code inserted into the header.php in my WooThemes OnTopic directory was put in a shitty place, so instead of firing, it just displayed the first couple of lines under the site’s header, which alerted me that something was wrong.

   So basically, had the issues not been as obvious as they were, not a single one of the plugins available out there would have made a lick of difference or even managed to give me a heads up that I’d been hacked.

   Oh, and finally, does anyone know if the ‘hardening’ procedure that the Sucuri Free plugin recommends has any conflicts when working with WooCommerce?

8. Nice set of features, but you should check the Apache error log before releasing the plugin….you generate a lot of input there:

   ex:

   WordPress database error Duplicate key name ‘id’ for query ALTER TABLE wps2_sucuri_lastlogins ADD UNIQUE KEY id(id) made by require_once(‘path-to-dirwp-load.php’), require_once(‘path-to-dirwp-config.php’), require_once(‘path-to-dirwp-settings.php’), do_action(‘plugins_loaded’), call_user_func_array, sucuriscan_lastlogins_table_exists, dbDelta

   PHP Notice: Use of undefined constant SUCURI_LASTLOGINS_TABLEVERSION – assumed ‘SUCURI_LASTLOGINS_TABLEVERSION’ in [dir-path]pluginssucuri-scannersucuri.php on line 744

   these two (from what I’ve seen so far) keep repeating and fill the log file, which is not nice at all… 🙂

9. I saw the update and installed it during the week, nice roundup of the new features guys.

10. Nice set of features. I’ve used to date and I am very satisfied

11. I would like to know how to disable this feature. I find it quite annoying, and for my site not necessary. The information in this article give me many useful things. Really thank you.

Comments are closed.