This plugin will block all unauthorized and irrelevant requests through query strings by redirecting them to an appropriate error page instead of gene …
Author: Fahad Mahmood
Project URI: http://androidbubble.com/blog/wordpress/plugins/injection-guard
License: GPL 3. See License below for copyright jots and tittles.
Injection Guard is a wordpress plugin which helps you to get relax about security of your website which can be disturbed by invalid query string based requests. It is much better that if you are using pretty permalinks so you can deny all of the query string parameters straightaway instead of having headache of a list of whitelisted parameters and blacklisted as well. I am a PHP, WordPress developer and i faced a lot of inconvenience regarding keep an eye on security threats related to query strings and user’s activity. Our debugging process demands continuous monitoring to the number of requests and their types. So, I coded a number of fixes for wordpress sites and few of them are in form of articles on my blog.
injection shield
Important!
1- Be in touch with your Google Webmaster Tools.
2- Keep visitng author’s blog for the updates.
sql injection, http injection, site hacked, site hacking, anti hacking, injection guard, hacking
**📌 Log all the unique query strings which are trying to penetrate your website
**📌 Blocked some query parameter
**📌 With an add-on you can ask a free diagnosis for your site
This WordPress Plugin is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 2 of the License, or any later version. This free software is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this software. If not, see http://www.gnu.org/licenses/gpl-2.0.html.
To use Injection Guard, you will need:
* an installed and configured copy of [WordPress][]
(version 3.0 or later).
* FTP, SFTP or shell access to your web host
Method-A:
Go to your wordpress admin “yoursite.com/wp-admin”
Login and then access “yoursite.com/wp-admin/plugin-install.php?tab=upload
Upload and activate this plugin
Now go to admin menu -> settings -> IG Settings
Click on save settings button.
That’s it, now wait for the magic
Method-B:
Download the Injection Guard installation package and extract the files on
your computer.
Create a new directory named Injection Guard
in the wp-content/plugins
directory of your WordPress installation. Use an FTP or SFTP client to
upload the contents of your Injection Guard archive to the new directory
that you just created on your web host.
YES
It immediately senses the unauthorized access through query string and block it immediately. It does not let the page generate a valid content for an invalid request. It saves you from an extreme headache.
Make sure that your plugin version is updated because protection and related knowledge is evolving every moment. Keep an eye on invalid requests through query strings you have, either restrict few of them or restrict them all if not required.
YES, if the queries are about WordPress and data security then you are welcome.
It is good if you use support tab or plugin’s author blog. If you want to reach the author immediately then use contact form on his blog.
Contact plugin author, he might will do on your behalf or will guide you shortly.