Compatible Plugins and Optional settings

  • Resolved the8055

    (@the8055)


    4 months, 1 week ago

    Greetings Rob,

    Thanks for creating and maintaing this wonderful plugin. I just used it on my test site and amazed to see the login attempts and those blocked by plugin with community feature on.

    I have a question regarding the other security plugins that I use and what settings should I keep on your plugin that does not conflict with the existing plugin.

    Plugin 1: Headers Security Advanced & HSTS WP: https://wordpress.org/plugins/headers-security-advanced-hsts-wp/

    Plugin 2: BBQ Firewall – Fast & Powerful Firewall Security : https://wordpress.org/plugins/block-bad-queries/

    Plugin 3: Blackhole for Bad Bots : https://wordpress.org/plugins/blackhole-bad-bots/

    Question 1: Because Apocalypse Meow has it’s own spam protection, so in that case should I keep BBQ Firewall and Blackhole for Bad Bots active or should I remove it.

    Question 2: As I am using Headers Security Advanced & HSTS WP plugin. It’s just plug and play and I don’t need to make any changes in User Enumeration, Core & Template Overrides and Request Header Settings.

    Please help me in making these decisions as I am not very tech savvy.

    I also want to know why you have kept such a low visibility of this plugin, with such awesome features this could be the one of the top security plugins on WordPress Store.

    I saw this plugin when I was searching for the keyword MEOW. You might have some sentimental value for this keyword, but I think that might be keeping this plugin visibility under the cloud.

    This is just a suggestion

    1. That you launch a parallel version of the plugin with a new name like login FortiLogin, LockGuard WP, SecurePass WP, LoginShield, BruteBlocker, WP Access Guard, SafeLogin, VaultLogin Pro, Login Fortress, ShieldMyLogin, LockDownWP, GateKeeper WP, SecureEntry, Login Defender, StealthLogin. I am not sure if there are plugins with similar name by I suggest you should give it try.
    2. That logo 🙁 – Please use one of thousand AI’s to generate a bright and beautiful logo. That logo doesn’t boosts anyone’s confidence.
    3. Future Features – 2 Factor Authentication / Captcha – Are you planning to implement that in future releases or I should use third party plugins for that.

    I am sorry for this long post, but I said what I thought of. Hope you don’t mind.

    Regards

    Vinay

Viewing 1 replies (of 1 total)
  • Plugin Author Blobfolio

    (@blobfolio)

    4 months, 1 week ago

    Hi @the8055

    There doesn’t seem to be much overlap between Apocalypse Meow and those other plugins, beyond the three options in the Request Headers section. Just disable anything in there that the Headers plugin is handling separately, or vice-versa.

    Neither 2FA nor CAPTCHAs are planned features for Apocalypse Meow.

    The current WordPress flow isn’t well-suited to secondary challenges (like 2FA). It is possible to bolt extra steps onto the process anyway, but the resulting code complexity is high enough to risk introducing all sorts of new and terrible security vulnerabilities by mistake. Haha.

    CAPTCHAs, on the other hand, are easy to add, but don’t provide any particular benefit in this context. The “login nonce” feature already blocks submissions bypassing the wp-login.php landing, and the fail-counting limit quickly puts a stop to any brute-force nonsense.

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.