AIOS 5.1.6 Release

The newest update of the All-In-One Security (AIOS) plugin introduces two significant features to both free and Premium versions, along with a series of tweaks and fixes.

WordPress Salts, a cryptographic tool that enhances login security, have been extended by 64 characters and are now changed weekly. This upgrade makes it even more challenging for malicious users to crack WordPress passwords.

The update includes the addition of an audit log, which provides administrators with a comprehensive view of events occurring on their WordPress site.

Audit log details: Release 5.1.6 includes information on plugin and theme events, allowing admins to track additions, removals, updates, activations, and deactivations. Future updates will expand this feature to cover more events, such as logins, failed logins, user registrations, firewall events, and more.

• Feature: Added an audit log
• Feature: Add salt postfix option to improve your site’s security
• Fix: Rename login slug used like wp-login-RANDOM_SUFFIX showing 404 page issue solved and code clean up for multisite activation
• Fix: Captcha settings tab in multisite installation for subsites not showing
• Fix: Cron reschedule event error for hook aios_15_minutes_cron_event if plugin deactivated or uninstalled
• Tweak: Stop user enumeration now shows 403 forbidden error code instead of 500 server error
• Tweak: PHP 8.1 warning rawurldecode passing null instead type string is deprecated for block request string 6g rule
• Tweak: Code clean up for disable cookie based brute force constant as rule moved to firewall
• Tweak: Comment spam IP monitoring page UI
• Tweak: Updated seasonal notices
• Tweak: Improve internal code structure making way for future improvements
• Tweak: Remove mention of the 6g firewall rules being .htaccess based as they are now php based
• Tweak: Added new internal function to check user capability and nonces
• Tweak: Improve config code with inline saving