We’ve been hard at work on seven new features in iThemes Security and iThemes Security Pro, not to mention over a dozen bug fixes and tighter integration with iThemes Sync – all to make WordPress security easier for you.
Keep up with what’s next for iThemes Security on the Public Roadmap.
Here’s a recap of the new features:
1. WP-CLI Commands – PRO
Developers rejoice! If you’re an iThemes Security Pro user you can now perform iThemes Security actions right from your terminal by using WP-CLI.
- File scan
- Get recent (shows last 10 items in the log)
- Malware scan
- Release lockouts
- Get status
2. Disable Proxy Detection
In some cases hackers mask themselves as proxies, like services you may be using like Cloudflare or Varnish. Turning off proxy IP detection will help iThemes Security block the right IP addresses. Navigate to iThemes Security > Settings tab > Global Settings to disable proxy IP detection.
3. Sync Temporary Whitelist
Easily whitelist your IP address remotely. From your Sync dashboard just navigate to an individual site then click “Temporarily Whitelist Your IP Address” in the Security widget to avoid locking yourself out for 24 hours. You can also whitelist your IP from the Security tab in an individual site view.
This is a handy feature for freelancers or Admins managing several sites. Whitelist your IP on sites while you’re updating settings in iThemes Security.
4. Sync Two-Factor Override – PRO
iThemes Security Pro users can override site visitors using two-factor authentication from their Sync dashboard instead needing to edit a user’s profile.
Click the Override Two Factor button next to the user you wish to temporarily override. Note: this setting is valid for 10 minutes from the time of override.
This time-saving feature prevents you from logging in to each WordPress dashboard to edit user profiles.
Just make sure you have Two-Factor enabled in the Pro tab of iThemes Security.
5. Sync File Change Scanning
Another way iThemes Security protects your site is by scanning site files for changes. From your Sync Dashboard, navigate to an individual site and click the Security tab. You’ll see you can now scan files for any changes.
Be sure to have the File Change Detection feature enabled in iThemes Security to be able to scan files from your Sync Dashboard.
6. Hide Security Menu in Admin Bar
You can now hide the Security menu from the WordPress Admin bar when a user is logged in to WordPress. Just go to iThemes Security > Settings tab > Global Settings and check the Hide security menu in admin bar box and you’re set.
7. Improved Compatibility in Suspicious Query String Detection
The more plugins a site uses, the greater the opportunity for iThemes Security to detect a URL as “bad” when it may not in fact be harmful to your site. Plugins generate tons of URLs so we’ve leveled up this feature so iThemes Security more intelligently detects URLs that are truly harmful and blocks them.
Navigate to iThemes Security > Settings tab > System Tweaks to enable this feature.
You won’t see anything new in your WP Dashboard on this feature, it’s an improvement to an existing security measure.