3.2.3

Release Notes: click here

• New Features

  • Added a startup wizard to assist new users with new installs.
  • Introduced the WordPress activity log levels.
  • New search filters in the WordPress activity log viewer.
  • Added a new test button to all external database connections, including those for WordPress activity log archiving and mirroring.
  • Added several new settings to purge the WordPress activity log and reset plugin settings to default.

• Improvements

  • Performance improvement: optimized the logic of the plugin sensors to load only required ones during user action.
  • Redesigned all the settings pages and included more help text, making them more user friendly.
  • Added links to plugin knowledge base where possible in the plugin settings.
  • Improved the WordPress activity log pruning setting so now it is possible to configure retention based on a period of time.
  • Database improvement: changed the option_value column in the plugin tables to long text.
  • WordPress website file changes results are now stored in the plugin's options table.
  • Improved the list of excluded file extensions in the WordPress file changes scanner.
  • Added sorting in the logged in WordPress users view.
  • Added more checks to ensure opt-in and other plugin messages are shown when needed only.
  • Removed affiliate network message in plugin.

• Bug Fixes

  • Fixed an issue where stored passwords might have been changed because of change from Mcrypt to OpenSSL.
  • Fixed an issue in which retention settings were reset when moved to archiving settings.

3.2.2.1

hotfix for SDK path etc.

3.2.2

Release Notes: click here

• New Events

  • Event ID 9072: User opened WooCommerce product in editor
  • Event ID 9073: User viewed WooCommernce product

• New Features

  • Support for MainWP - plugin now keeps a log of changes done on websites from MainWP dashboard.
  • Added new option to allow users to trial the premium edition for free.
  • Added built-in email notifications for WordPress file changes.
  • Buffer for external database to cater for slow connections.
  • Retention settings for WordPress activity logs archiving.
  • New setting to exclude non-existing URLs so they are not reported in the logs.
  • System info module that captures diagnostic data required by support.

• Improvements

  • Ability to exclude directories from the WordPress file integrity scanner.
  • Increased file size limit to 5MB in the WordPress file integrity scanner.
  • Monitoring sensors now only loaded if source being monitored is active / installed (performance enhancement)
  • Views will not be loaded unless accessed (performance enhancement)
  • Updated 404 detection sensor to use $wp_query (fallback to $_SERVER global array)
  • New setting to exclude the logging of automated changes to WooCommerce products' stock.
  • Sub sites admins on multisite can now see who is logged in to the websites they administer.
  • Updated exclusion settings to allow users to exclude any post type from the logs.

• Bug Fixes

  • Added a check on post type value to handle an unhandled error.
  • Updated Search filters to handle role names and role slugs (e.g. shop-manager and shop manager).
  • Fixed issue in which database selection (archive or live DB) was not stored properly.
  • Fixed issue where audit log viewer was auto refreshing to page one automatically when browsing other pages.

3.2.1

• Improvements
  • Improved connectivity checks of archiving and mirroring external databases.
  • Updated external database connection SSL code to support PHP 5.4.
  • Renamed Alerts to Events - More information on WordPress activity log events

3.2.0

Release notes: WordPress file changes warnings & more in WP Security Audit Log 3.2

• New Features

  • File Integrity scans & WordPress file changes warnings in the activity log.
  • Support for SSL / Client certificates for activity log external database connections (including archiving and mirroring).

• New Activity Log Event IDs

  • 6028 - A file on the website has been modified
  • 6029 - New file has been created on the website
  • 6030 - A file was deleted from your website

• Improvements

  • Performance enhancement - storing table names in sentients so they are note retrieved every time they are required.
  • Improved the built-in WordPress email notifications for content.
  • Changed the Freemius opt-in / opt-out screen to non compulsory.
  • Updated WhatIsMyIpAddress.com link to HTTPS so traffic is now encrypted.
  • Added notification on new installs to point out to users where to find the WordPress activity logs.
  • Updated Freemius SDK (now GDPR compliant)

• Bug Fixes

  • Fixed issue in which the archive / live activity log database was not being saved properly.
  • Fixed issue in WooCommerce activity log - Alert 2053 was being reported instead of 9001 when a new product is published.
  • Fixed issue in WooCommerce product SEO change - wrong event was being reported.
  • Fixed issue where sorting activity logs events by IP address which tripled the entries displayed in the log.

Refer to the WP Security Audit Log change log page for the complete change log.

3.1.7

• New data inspector
• Alerts buffer for external DB
• Option in external database setting to use WordPress URL as table prefix

3.1.5

• Support / activity for Yoast SEO plugin
• Improved users sessions management

3.1.4

Updated Freemius SDK (bug fixes for WordPress multisite)
Added functionality to download 404 error log files from alert

3.1.2

• Security improvements

Moved log for failed logins in the database
Added index.php and .htaccess files to the plugin upload directory (restricting directory listing)
Above fixes applied to address potential information disclosure issue

3.1.1

• Improved support for WordPress multisite for opt-ins / opt-outs
• content sensor improvements (reporting all changes when done at the same time)