A little while back we mentioned WordFence and whether it’s actually the best WordPress security plugin on the market (as user numbers suggest). Yet, while popular, Wordfence is far from the only one of its kind. Actually, with Sucuri GoDaddy recently acquired certainly one of it’s main competitors. High time we did a comprehensive Sucuri review!
For that uninitiated, Sucuri is really a company committed to website security. They feature many different services such cleaning hacked, compromised or blacklisted sites and protection from DDOS, brute force along with other attacks.
It’s important to note that Sucuri is not really a WordPress-specific company. Additionally they offer their services for Joomla, Drupal, Magento as well as other sites. However, they do seem to have an exclusive desire for the WordPress platform. Actually, the organization works closely with all the WordPress security team and some plugin providers to make their research available to them.
Besides that, these people have a security plugin within the WordPress directory, which can be what we should will mainly handle in this post. Let’s get started.
Sucuri Security – Installation and Setup. As step one within this Sucuri Sitecheck, we are going to install the plugin on our website and obtain it to operate. Install the Plugin. You are able to install Sucuri in the same fashion as other WordPress plugins. Go to Plugins > Add New and look for Sucuri. The plugin you are searching for is at first place. The dashboard shows the security status of your site. If activated, here you will see logs of everything that has been happening with your site.
For that beginning, it shows the core integrity of the site. That means, Sucuri scans your WordPress files for changes or unknown files and lists problems to help you address them. Obviously, if files appear in this list you know are not a problem, you can exclude them through the next scan. For the, just check the products in question and utilize mark as fixed through the drop-down menu below. In the same place, you can also delete or restore files.
Much like Wordfence, Sucuri Security contains a malware scanner. When you push the button, it will look at your site for malware, errors and out-of-date components. In addition, it checks whether you have been blacklisted by Google, Norton, AVG, Phishtank as well as other spam lists. The scan will run automatically every three, twelve or twenty-four hours (according to your settings). The default is two times a day.
Once it offers run through, you receive a detailed report of the findings. Any issues present on your own site are listed into it to help you take appropriate action if required. Of course, like any good security system, Sucuri also offers a firewall. When enabled, all site traffic first goes through Sucuri’s servers before coming to your website. That way, they could sort out hackers, DDOS attacks and all of other undesirable traffic before it even reaches you.
Doing this protects your website as well as your server, prevents downtime and slow downs. In addition, it protects you against database SQL injections, backdoors and lots of other threats. However, the firewall is not really contained in the free plugin. So that you can enable it, you require an API key for which you need to join up to one of the paid plans.
Under Hardening, Sucuri helps you do something to fortify your internet site from the outside threats. You can enable each feature comfortably using the click of a button.
Finally, this part contains everything Sucuri knows about your web site. It provides information on your plugins and server, scheduled tasks, the integrity of your .htaccess file, variables like database name, table prefix, SALTs and a lot more as well as settings for error logs.
Sucuri Security – User Friendliness
As you can tell through the above, the plugin is chock packed with useful features. However, how does it compare when it comes to user friendliness?
In general, Sucuri Security is simple to use. Everything is in the same menu item, settings are structured and the plugin comes with sensible default configuration. Besides managing a manual scan and experiencing the hardening options and settings once, there isn’t much to accomplish for many users.
However, I came across that some features are disabled automatically that, in my opinion, shouldn’t be. For instance, checks for core integrity and audit log statistics. However, the rest is really set it up and then forget it.
The only real problem I ran into was i was not able to create an API key. Although I clicked the button many times, the reminder to get my API key never vanished. Recovery via email also didn’t work. Nothing ever arrived inside my inbox despite the fact that test emails for your security alarms did make it there.
Overall, Sucuri provides a solid free security plugin for WordPress. It has many wonderful features, just like the comprehensive scanning module, easy security hardening and help for hacked websites. In addition to yjvefb monitoring tools, the plugin makes keeping your web site safe quite easy.
The single thing that is certainly missing, naturally, is the firewall. Other security plugins offer this feature for free but Sucuri users must pay to utilize it for their website.
That’s understandable, because the firewall is Sucuri’s flagship product and the main reason for his or her stellar reputation on the web. If you are running a valuable high-traffic website, investing in this extra layer of security is practical. Sucuri truly know what they are performing as well as your site are usually in good hands.
However, in terms of free WordPress security plugins, Sucuri’s offer does not really stand out from the group. If you wish to protect your website with limited funds, you can even examine out iThemes security or Wordfence first. They provide most of the same features along with a firewall without costing anything.