Hi all, I just need some takes on the levels of security plugin that I should have installed for my site. I got rid of Jetpack because it just seemed to be causing problems, and replaced it with WordFence free version since all I wanted from Jetpack was some security features.
Now I talked with my hosting provider and they let me know I already have CSF firewall/modsecurity and Immunify 360 for cleaning up malware through them. Since these are two big features of WordFence, I’m not so confident I need it now. They said its fine to have despite the overlap, and just to analyze if it causes any problems and configure it to be fast so I don’t have any speed issues from such a large plugin.
Regardless, here I am asking for another opinion or if anyone has some plugin recommendations for things like 2fa for customers (I’m still not too sure about Wordfence Woocommerce Integration for 2fa). Is it worth keeping Wordfence around? Thanks in advance!
keep in mind Wordfence only supports TOTP 2FA which confuses some less tech-savvy clients. So if that’s the goal you may want a 2FA solution that offers other methods too.
I can’t fully speak to the overlap but Wordfence does compare your theme, plugin, core to official repos and has good alerting tools, as well as WP specific tools for login protection.