Nexcess.comServers.comLiquidWeb.com

7.8.0

Feature1 Tweak5 Fix5

Features

  • The new, improved WordPress Security Site Scan powered by iThemes checks if Google has detected malware and added your site to their threat list.

Tweaks

  • Remove quick bans. Persist banned hosts to .htaccess or nginx.conf on an hourly schedule.
  • Cap banned hosts persisted to .htaccess or nginx.conf to the most recent 100. This number can be adjusted with the "itsec_ban_users_max_hosts_for_server_config" filter. Older banned hosts will be locked out after WordPress loads.
  • Ensure randomly generated passwords are considered strong by the Strong Passwords library.
  • Suggest a 32 character password when forcing a password change.
  • Change insensitive language to be more inclusive.

Fixes

  • PHP warning when a user's email address is updated outside of the user edit admin page.
  • Fix login interstitials on WP Engine when using a front-end login form.
  • PHP warning when checking opaque tokens.
  • PHP warning after successfully connecting a site to iThemes Sync via the login connection flow.
  • File Change Security Message would not appear for new installs.