About Chris Wiegman

Chris is the owner of Bit51 where he blogs about web development and works on WordPress plugins such as Better WP Security. In addition Chris is a Senior Developer for Springbox in Austin, TX where he develops a host of solutions for clients large and small.

Find Chris on Facebook, , LinkedIn, and Twitter.

  • mk

    Better WP Security is blocking my other plugins by causing following problem on my site :
    Fatal error: Allowed memory size of 268435456 bytes exhausted (tried to allocate 71 bytes) in /home/programm/public_html/wp-includes/wp-db.php on line 1399

  • dny

    last time i got that error is caused by ‘Enable File Change Detection’ feature.

    just a guess, it seems that the process of counting md5 for thousands of wp files cause it.
    maybe bwps should break the process to only count few hundreds files at one run?

    btw,
    a feature request: rename/remove install.php, setup-config.php and perhaps other unneeded installation files.

    tnx

  • http://chriswiegman.com Chris Wiegman

    Hi DNY,

    I’m actually working on batching the file process for an upcoming version. As for the install, etc I won’t move them but I’m blocking access to some already and can do so for more.

  • dny

    another request if i may…

    protects upload and cache folder so that no file is executable in there.

    tnx a lot for this great script!

  • http://techblawg.ca David Ma

    First, just wanted to say that the plugin is great – thanks very much for creating it. Unfortunately, I seem to be suffering the same problem – Fatal error: Allowed memory size of 67108864 bytes exhausted (tried to allocate 1440239 bytes) in /X/X/public_html/wp-content/plugins/better-wp-security/inc/filecheck.php on line 210. My site dies until I delete the entire plugin. While I’d like to keep the rest of it and just turn off the file change detection, as soon as I reinstall and activate, I start getting the message again, such that I don’t have the opportunity to unselect the option (since the error kills of all access). I’d very much like to use the rest of the plugin – is there a way around this?

  • http://chriswiegman.com Chris Wiegman

    Thanks David….

    …It can be manually turned off if you’re comfortable with editing the database. I’m working on a more solid fix for the next version in the next week or so.

  • http://techblawg.ca David Ma

    Thanks for the note Chris – in that case I’ll just wait for the update. Keep up the great work – I for one appreciate it immensely.

  • http://independentwritersworkshop.org Jack Howland

    Away Mode issue (I think): I think a set my Away Mode to a screwy to time window and would like to reset it somehow. I can’t get into my dashboard now. When I delete the BWPS plugin file, I can get into the dashboard, but then when I reinstall BWPS, I get the same problem. Any ideas?
    And thanks! I really appreciate this plugin!

  • bercana

    “File change detection” is killing my site as well. That’s with all other plugins disabled. So something to do with my theme or the server?

  • Warren Meyer

    I don’t know if a fix was put in for this but I am still getting this same error when I activate the plug-in. It works for all my blogs except for the largest, where it crashes until I removed the plugin folder. Is there a line in the code or something I can change to turn off or remove the file change detection before I activate it?

  • Aidin

    Hi Chris,

    How do i find the option to manually turn off the filecheck.. ?

    I’ve deleted, and reinstalled, but keep getting the same error when trying to access Admin area

    Fatal error: Allowed memory size of 33554432 bytes exhausted (tried to allocate 904192 bytes) ….. /plugins/better-wp-security/inc/filecheck.php on line 218

    my DB format is hvnueg_

    I dont know any SQL either but can work phpmyadmin.

    Is there another way i can just edit / turn off in .php file through ftp client?

    ps: love the plugin :-)

  • http://chriswiegman.com Chris Wiegman

    Hmm, I’ll take a look. I’m hesitant to allow the plugin to change file permissions on those folders so I’ll see if I can find a less intrusive method.

  • dny

    i got this htaccess from google:

    php_flag engine off
    AddHandler cgi-script .php .pl .jsp .asp .sh .cgi
    Options -ExecCGI
    RemoveHandler .php .phtml .php3
    RemoveType .php .phtml .php3

    how to apply this automatically to all cache folder? can it applied using directory match?
    or must it applied to each and every cache folder?
    also, do we need to apply all those rules?

    bstrgds.

  • http://chriswiegman.com Chris Wiegman

    Hmm,

    In most cases what you have there really won’t do much for you as the WP cache plugins won’t push scripts to the cache folders that would be an issue and no one else should have any write access at all to those folders. That said, the number of times you would need to implement the feature depend on whether all your cache folders are located together. If you can put them in a single parent folder they will apply to all the sub-folders contained within. Be careful though, if there is more than the cache in the parent you could disable scripts that you need.

    Hope this helps a little,
    Chris

  • http://chriswiegman.com Chris Wiegman

    You have 2 options. Delete the options directly from your database (bit51_bwps is the option_name in your options table) or reactivate when the time is up.

    Please take a look at the support forums on WordPress.org for quicker responses.