BulletProof Security Pro 5.1.1 Released 12-8-2011
| General BPS Pro Info: There are several first time and one time set up steps for First Time Installations of BPS Pro. Future upgrades of BPS Pro are very quick and simple. |
| BPS Pro checks everything in real time so there is no need to worry about forgetting to set something up or setting something up incorrectly. If something is not set up or is set up incorrectly you will see an alert or warning about what needs to be done to correct the problem. |
| When upgrading BPS Pro, ONLY the BPS Pro plugin files are updated / upgraded. This means that all of your settings and security files (.htaccess and php.ini) remain unchanged and are not affected by installing a newer version of BPS Pro. |
| Custom php.ini file creation and set up is a one time thing per hosting account. When you create your new custom php.ini file in your Document Root folder it protects all of your websites under your Hosting account. You only need to create 1 custom php.ini file for your entire Hosting account. |
| First Time Installation of BPS Pro: When installing BPS Pro for the first time you will see alerts and warnings that your site is not protected. Unfortunately, this is necessary thing in order to ensure that you are using the latest BPS Pro Master .htaccess files on your website. Your website is ALWAYS protected with BPS security no matter what unless you actually change something to unprotect your website, such as putting your website in Default Mode. When upgrading BPS Pro, ONLY the BPS Pro plugin files are updated / upgraded. This means that all of your settings and security files (.htaccess and php.ini) remain unchanged and are not affected by installing a newer version of BPS Pro. If you have created additional files within the BPS Pro plugin folders they are NOT affected by upgrading BPS Pro and will NOT be removed, deleted or overwritten. The upgrade will ONLY overwrite BPS Pro plugin files so if you have added additional custom coding to any BPS Pro plugin files then be sure to back them up first before upgrading. BPS Pro Log files WILL be overwritten so if you want to keep your old php error log and http error log (403 error log) files then be sure to use BPS Pro Zip backup to backup your current version of BPS Pro first before upgrading to a new version. When Activating new Master .htaccess files for your website (Activating BulletProof Mode) be sure to back up your old .htaccess files first using the BPS built-in Backup and Restore feature. Another very handy options is to save any custom .htaccess code in-between upgrades to the My Notes page. This allows you to copy and permanently save any custom .htaccess code or .htaccess code modifications that you have added to your .htaccess files so that you can quickly copy that custom .htaccess code back to your new Master .htaccess files before activating them. You could copy your entire Root .htaccess file to the My Notes page if you want as well. |
| Whats new in BPS 5.1.1 The primary focus of the BPS Pro 5.1.1 upgrade includes new coding additions for improved functionality, enhancement, error checking and coding fixes for any coding issues found in 5.1. |
| .htaccess File Changes: The Cookie .htaccess filter has been removed. This filter is problematic for other plugins that use PHP SESSION. The UNIX Carriage Return and Newline security CRLF security filter has been modified. The new filter is now RewriteCond %{THE_REQUEST} (%0A|%0D) [NC,OR] The Explicit exec and execute security filters have been removed. The only explicit word that is being filter now is sp_executesql. RewriteCond %{QUERY_STRING} (sp_executesql) [NC] OPTIONAL: Creating new Master .htaccess files with AutoMagic is optional if you are Upgrading from BPS Pro 5.1 to BPS Pro 5.1.1. If you are not experiencing any problems with your website then there is no need to create new AutoMagic Master .htaccess files and activating the new Master .htaccess files with BulletProof Modes. If you activate the new .htaccess files they will still show BULLETPROOF PRO 5.1 as the version when viewing them with the File Editor. |
| F-Lock Changes and Additions: All file options now have Turn off Checking and Alerts for all files individually. This allows people with wp-config.php in a Server Protected folder (higher directory) to turn off file permission checking for wp-config.php as well as any of the other files individually. |
| Php.ini Security Status: Php.ini Security Status now checks whether your web host is using the Suhosin Extension and the Suhosin suhosin.executor.func.blacklist directive and displays the appropriate Status and disabled functions for your website. Additional coding checks have been added for the disable_functions directive to ensure all is good. |
| Pro-Tools Coding Enhancements: Script execution time limits are now raised to 280 seconds temporarily when using these Pro-Tools: String Finder, String Replacer / Remover and DB String Finder. This will prevent script execution time outs when searching or replacing strings. |
| BPS Pro Cron check for new versions of BPS Pro: This Cron check is now scheduled for a Once Daily check for new version upgrades of BPS Pro. If you want to force a version update check simply access any of the BPS Pro pages. |
| BPS Pro Upgrade Notification: The BPS Pro Upgrade Notification message is cleared / removed when accessing any of the BPS Pro pages. |
| Miscellaneous Host Specific Issues: MediaTemple websites MUST have the variable_order directive set to variable_order = EGPCS. This will cause a Red Status warning on the Php.ini Security Status page. When Host Specific checking is implemented in a later version of BPS Pro this Status check will be displayed as Green for MT folks. |
| And of course lots more coding improvements and enhancements. These are some of the more significant BPS Pro core improvements. |