|| Version: 2.0.0 Added: 24-10-2015
Support: WordPress 4.3, WordPress 4.2, WordPress 4.1, WordPress 4.0
The best WordPress security plugin to secure & protect your WordPress site.
Take the guesswork out of securing your WordPress site.
We built iThemes Security Pro v2.0.0 to help take the guesswork out of security. You shouldn’t have to be a security pro to use a security plugin, so iThemes Security Pro makes it easy to secure & protect your WordPress site.
2.0.0 - 2015-10-15 - Chris Jean
New Feature: Added "Multiple Authentication Attempts per XML-RPC Request" setting to the WordPress Tweaks section. When this setting is set to "Block", iThemes Security will block brute force login attacks against XML-RPC as described by Sucuri in this blog post: https://blog.sucuri.net/2015/10/brute-force-amplification-attacks-against-wordpress-xmlrpc.html
Enhancement: Updated text describing the XML-RPC setting in the WordPress Tweaks section to better explain what the setting is for and which setting is recommended.
Enhancement: Improved IP detection when proxy detection is active by processing the header set by CloudFlare.
Enhancement: Added a filter named itsec_filter_remote_addr_headers which can be used to change which headers are searched for the client IP. This allows for tailoring the IP detection for specific reverse proxies and load balancers.
Bug Fix: Updated the Banned Users settings to no longer add a newline to the Ban Hosts input each time the settings page is saved.