外掛標籤
開發者團隊
原文外掛簡介
Lunexia .htaccess Shield is a comprehensive security plugin that helps harden your website by automatically applying proven .htaccess security rules. The latest release includes a modern WordPress 7.0-ready admin interface, a polished dashboard, and premium workflow improvements for Firewall and Malware Scan access.
Key Features:
Redesigned Security Dashboard: Four separate protection score widgets for rule coverage, module coverage, malware scanning, and threat monitoring.
Premium Admin Tabs: Firewall and Malware Scan tabs now display premium badges like Advanced Settings.
Plugin Layout Centering: Admin screens are centered at 80% width for a clean, modern WordPress 7.0 experience.
Enterprise Protection Status Cards: View active/inactive protection modules such as bot protection, rate limiting, live traffic monitoring, and quarantine system status.
Security Statistics Panel: Track successful logins, failed logins, blocked IPs, pending approvals, and firewall protection status in one place.
Security Intelligence Dashboard: View malware detections, blocked attacks, IP reputation, and threat intelligence in a single admin experience.
One-Click Security Rules: Enable or disable security rules with a simple toggle interface.
Security Score: Visual protection score meter for instant status awareness.
Automatic .htaccess Management: Safely apply rules without manual editing.
Backup & Restore: Create backups before changes and restore if needed.
Admin Approval Workflow: Require admin approval for new Administrator/Editor accounts before login.
OTP Login Protection: Add one-time password verification for selected user roles.
Backend Access Protection: Restrict access to wp-admin and wp-login.php for blocked IPs.
Feature Preview: Preview recommended premium hardening features before enabling them.
System Status: Monitor your server’s security readiness.
Malware Scanner and Quarantine Manager: Premium scanner with quarantine controls, findings refresh, and scan actions.
WordPress 7.0 Compatible: Designed to look great in the new Modern admin theme.
Security Rules Included:
Disable directory browsing
Protect wp-config.php and .htaccess files
Block access to sensitive files
Disable XML-RPC for improved security
Prevent PHP execution in uploads folder
Malicious query string protection
Security headers (XSS, CSRF, HSTS, etc.)
Safe & Reliable:
* Uses core functions for .htaccess manipulation
* Creates automatic backups before changes
* Checks file permissions before applying rules
* Non-destructive – rules are wrapped in markers for easy removal
External Services
This plugin connects to external services as follows:
Google Sheets API Service
This plugin uses the Google Sheets API (via Google Apps Script) to validate license keys when users activate a license. This is an optional feature and is only used when a user voluntarily attempts to activate a license key.
Purpose: Validates license key authenticity and domain binding
When it’s used: Only when users click “Activate License” in the plugin settings
What data is sent: License key and website domain name
Service provider: Google (Google Sheets / Google Apps Script)
Terms of Service: https://policies.google.com/terms
Privacy Policy: https://policies.google.com/privacy
Data retention: License validation data is stored only on the user’s Google Sheet, which they control
Support
For support, please visit the plugin forum or check the documentation.
License
This plugin is licensed under the GPLv2 or later.
Credits
Developed with security best practices in mind.
