iThemes Security

I am very happy with iThemes PRO customer support. They answered all my questions in great detail and were extremely helpful.

We are an agency that manages a ton of sites and we have been die hard iThemes plugin supporters, as it 'was' a solid and reliable plugin. Suddenly two weeks ago we had over 35 sites we manage crash due to iThemes Security. Updates didn't fix it, there was no notification of any issues from iThemes, and even when we removed the plugin and reinstalled, only 20% of those sites came back up.

Once the iThemes Security plugin was removed, the site was up and running without issue. This was affecting sites hosted at multiple providers, and platforms. cPanel, WP Engine, GoDaddy, etc....all crashed due to this plugin. Trying to get support is not really available unless you pay for the plugin, but how are we supposed to feel comfortable paying for the product if situations like this happen, and iThemes sends out no notices and no notice of fixes for the issue.

We do NOT want to stop using iThemes for all our clientele, but what choice do we have? If you are going to develop software, please take responsibility. There is no way that this wasn't experienced by tons of others.

As I said, i do NOT want to stop using this product, but this was handled poorly and cost us upwards of $3000 in man hours to repair all the sites that iThemes broke.

2FA continually breaks with free version. I use to be a Pro subscriber for years, I recently did not renew and just used the free version. When I enable 2FA it works for one or two logins, then it breaks and says it is not available please use another method or use backup codes. I have check all settings and everything is correct, i reached to ithemes for support, but no response. One of the reason i choose not to renew my subscription is that i have noticed that ithemes security has become really bloated and resource intensive. even if i disable the bloat features that I do not use, the resource usage is still high. ithemes security nolonger plays nice with most of the plugins that myself and my clients use, it almost seem like they purposely choose not to play well wit other plugins. Lets not speak of massive amount of spam it now generates. On top of that it has become almost impossible to setup, and now in my opinion is falling behind other security options. I really do appreciate what ithemes security has done for my clients and my own wordpress sites over the years, but i now feel their are better options available.

The Best WordPress Security Plugin to Secure & Protect WordPress

A great support and plugin !!

I installed it immediately when I start the site. At first I was happy that it was blocking thousands of attack to my new site! But it was strange to me that a new site that nobody knows about has hundreds of attacks a day right from the start. Well, after three months and writing hundreds of articles. Almost no one comes to the site in google webmaster tools I then found that out of 300 pages google indexes 4 pages but knows about the others but they are inaccessible to him several times I asked the google robot for indexing and always indexed so +1-2 pages hundreds remained inaccessible!! YES THIS PLUGIN BLOCKS THEM!!!

Tested it for a week , UI is garbage but who cares if it works.

Very heavy emails on make it extremely spammy .I don't want a notification for every bot passing by .

1 day more and uninstall to look for a better solution

One of the good security plugin, however the UI is now very complicated. It was simpler earlier.

The latest major version of the plugin (v7) is a total mess. The UI is clunky, there are dashboard errors, cards are laid out all over the place (no grid system whatsoever), and changing settings seems to have no effect. The feature set also appears to be heavily stripped back from version 6 - either that or the designer has managed to put the settings in totally illogical places. I reached out to iThemes support, but they wouldn't even acknowledge these issues - instead responding with a request that I pay for support, even though I had purchased a lifetime subscription to the plugin. I definitely won't be paying to tell them how terrible their plugin is! They can read that here. Even though I had some issues with version 6, the plugin seemed reasonably robust, and the logical structure of the plugin's UI made sense. In this version, however, the UI has no logical hierarchy. They've chucked a few ideas together in notepad and told the developers to get going. I wouldn't pay for this plugin again.

I am having a hard time understanding why so many people use this security plugin. I personally don't find the big benefit on what it offers compared to other major security plugins. I might install it in the future but for the moment I am opting out.