Plugin Directory

DawsonyWeb – Security Shield

By DawsonyWeb

Support

Description

DawsonyWeb Security Shield protects your WordPress site from comment spam and unauthorised API access.

Comment Protection

Master switch to completely disable all comments (form, REST API, XML-RPC, feeds)
Invisible honeypot field to trap bots
Minimum comment length enforcement
Block all links or cap links per comment
Require login to comment
Keyword/phrase blocklist

API & REST Hardening

Disable XML-RPC entirely (removes X-Pingback header too)
Hide /wp/v2/users endpoint to prevent username harvesting
Require authentication for all REST API requests
Optionally disable the REST API completely
Block author enumeration via /?author=N

Spam Rules

Per-IP comment rate limiting (configurable max and time window)
IP address blocklist — blocked IPs receive a 403 on any front-end request
Rolling activity log (last 200 events)

Installation

Upload the dawsonyweb-security-shield folder to /wp-content/plugins/.
Activate the plugin through the Plugins menu in WordPress.
Go to Security Shield in the admin menu to configure.

Reviews

There are no reviews for this plugin.

Contributors & Developers

“DawsonyWeb – Security Shield” is open source software. The following people have contributed to this plugin.

DawsonyWeb

Translate “DawsonyWeb – Security Shield” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.

Changelog

1.0.1

Compatibility: tested up to WordPress 7.0.

1.0.0

Initial release.

Ratings

No reviews have been submitted yet.

See all reviews