GD Security Toolbox Pro 1.2 is the new major update for this WordPress security plugin, and this time includes improvements to antispam, .htaccess, content security policy, events log and much more.
This version has evolved from months of testing and refining plugin features. This plugin is in use on this website, and it is a perfect testing ground for all features included, and that will help evolve the plugin in the future. This version brings some major updates to .HTACCESS handling, Antispam addon, Content Security Policy addon, events log and few other areas.
To help with getting quick security overview for individual users, plugin expands user panel with information about latest login, and overview of all events in the events log with options to see details in the log.
Plugin now supports the use of Tornevall DNSBL for the auto ban and antispam, with data from this database displayed in the events log, when ProjectHoneypot doesn’t list the same set of IP’s.
HTACCESS addon includes many useful changes. The file can be automatically rebuilt when the new IP is banned or unbanned, and other addons can trigger the changes into this file. This is all disabled by default, but you can enable it from the plugin settings page. Content Security Policy has two new options, to force SSL URL for report URL and to save CSP rule into the .HTACCESS.
Antispam addon has two new options: use of Tornevall DNSBL and new detection method using the hidden comment field to trap bots. This is an extremely effective method to combat comments spam, and it can stop everything that other antispam methods might miss. Comments panel is expanded with the column for the reason for spam or reason for comment approval.
Events log can filter log by user ID, there are many improvements to the log display and optimization of SQL query used to get data for display. Banned IP’s log is also improved with new filters and option to convert temporary ban into the permanent one.
There are many more updates: new actions and filters for internal control, improved database tables schema, improvements to login honeypot, login limit and antispam. ProjectHoneypot panel is renamed to DNSBL because new DNSBL database support is added, and the plan is to add more in the future. As for the fixes, slow SQL query on events log is fixed, some small issues with toolbar are fixed. There are many more improvements and fixes, so check out the changelog for more information.
If you notice any problems with the plugin, stop by the support forums to report it. Let me know what you think about the new version, and as always, suggestions are welcome.