Category: Security

ClassicPress password fixer

Simone Fioravanti

Fix passwords issues when migrating from WP 6.8.x

Download

More Info
Spoof User Agent

Simone Fioravanti

Change your User Agent to whatever you want. Go to Settings > Spoof User Agent to configure the User Agent exposed when doing HTTP requests.

Download

More Info
ClassicPress Pepper for Passwords

ClassicPress

For enhanced security add a "pepper" to password hashing.

Download

More Info
Overview

The ClassicPress Pepper Password Plugin is designed to enhance the security of user passwords by implementing a unique “pepper” mechanism. This plugin allows administrators to generate and manage a pepper string that is used in conjunction with password hashing, adding an additional layer of protection against unauthorized access.

Features
- Pepper Generation: Easily generate (or refresh) a random pepper string to enhance password security by clicking a button.
- Settings Menu: Access the plugin settings through the ClassicPress admin menu at Settings > Pepper.
- Automatic Activation: The plugin creates a pepper file upon activation, if it doesn’t already exist, to store the random Pepper string.
- User-Friendly Interface: Simple navigation and clear messages for users.
Manual Installation
1. Download the plugin .zip file.
2. Upload the pepper-password folder to the /wp-content/plugins/ directory via FTP, or visiting Plugins > Upload.
3. Activate the plugin through the Plugins menu in ClassicPress.
Installation
- Install the ClassicPress Directory Integration plugin and activate it on your site
- Visit Plugins > Install CP Plugins and search for ClassicPress Pepper Password Plugin
- You can install and activate the plugin by clicking the respective buttons.
Usage

Accessing Settings
- Navigate to Settings > Pepper in the ClassicPress admin dashboard to manage your pepper settings.
Generating a Pepper
- Click on the Enable Pepper or Renew Pepper button within the settings page to generate or renew the pepper string.
Important Notes
- Changing or deactivating this plugin will invalidate all stored password hashes, requiring users to reset their passwords.
- Ensure you have filesystem permissions set correctly for the plugin to function properly.
Contributing

Contributions are welcome! Please fork the repository and submit a pull request for any enhancements or bug fixes.

License

This plugin is licensed under the GPL v2 or later. Please see the LICENSE file for more details.

Support

For support or inquiries, please open an issue in the repository or contact the plugin author directly.
ClassicPress Integrity Checker

Simone Fioravanti

Check core files against MD5.

Download

More Info
Plugin for ClassicPress.

Check core files against MD5.

Filters
- Change URL: cpic-url (default https://api-v1.classicpress.net/v1/checksums/md5/)
- Change requested CP version: cpic-version (default local CP version)
Disable FLoC

azurecurve

Description Disable Google's next-gen tracking technology Have you ever heard of "Federated Learning of Cohorts" – or FLoC? It is Google's next-ge ...

Download

More Info
Disable Google’s next-gen tracking technology

Have you ever heard of “Federated Learning of Cohorts” – or FLoC? It is Google’s next-generation technique for tracking users across the web. They say it’s anonymous and safe. We know better. This plugin sets a header to disable the FLoC tracking.

Installation
- Download the latest release of the plugin from GitHub.
- Upload the entire zip file using the Plugins upload function in your ClassicPress admin panel.
- Activate the plugin.
Frequently Asked Questions

Can I translate this plugin?

Yes, the .pot file is in the plugins languages folder and can also be downloaded from the plugin page on https://development.azurecurve.co.uk; if you do translate this plugin, please sent the .po and .mo files to [email protected] for inclusion in the next version (full credit will be given).

Is this plugin compatible with both WordPress and ClassicPress?

This plugin is developed for ClassicPress, but will likely work on WordPress.

Changelog

Version 1.1.1
- Update readme file for compatibility with ClassicPress Directory.
Other Notes

azurecurve was one of the first plugin developers to start developing for ClassicPress; all plugins are available from azurecurve Development and are integrated with the Update Manager plugin for fully integrated, no hassle, updates.

The other plugins available from azurecurve are:
- Add Open Graph Tags – details / download
- Add Twitter Cards – details / download
- Avatars – details / download
- BBCode – details / download
- Breadcrumbs – details / download
- Call-out Boxes – details / download
- Check Plugin Status – details / download
- Code – details / download
- Comment Validator – details / download
- Conditional Links – details / download
- Contact Forms – details / download
- Disable FLoC – details / download
- Estimated Read Time – details / download
- Events – details / download
- Filtered Categories – details / download
- Flags – details / download
- Floating Featured Image – details / download
- From Twitter – details / download
- Gallery From Folder – details / download
- Get GitHub File – details / download
- Icons – details / download
- Images – details / download
- Insult Generator – details / download
- Load Admin CSS – details / download
- Loop Injection – details / download
- Maintenance Mode – details / download
- Markdown – details / download
- Mobile Detection – details / download
- Multisite Favicon – details / [download](https://github.com/azurecurve/azrcrv-multisite-favicon/
Registration Honeypot

Simone Fioravanti

Registration Honeypot Add a honeypot to your ClassicPress registration form to prevent spambots from creating user accounts. Usage The Registration ...

Download

More Info