Plugin Author
Eli
(@scheeeli)
No, sorry, I’m not planning to add a command-line feature.
I don’t see any advantages to adding a Third-party command to wp-cli and the interface is already so complicated and browser dependent that I don’t think it would work.
Maybe there is simpler solution to your problem though. What is it that you are needing to accomplish by utilizing the command-line anyway?
Thanks for your answer.
Scanning over http is time and resource consuming than needed.
Also once a site is infected I would like to have a facility where I can take it offline and scan the code via command line.
Plugin Author
Eli
(@scheeeli)
Yes, Scanning over http is more time and resource consuming than at the command line. I know there is a need for more command line tools to help server administrators fight these infections server wide but My plugin is geared toward helping WordPress admins who are dealing with an infected site, usually when the whole job is over their head and the command line is out of the questions anyway.
If you come up with something that work well for you at the command line hen please share it here. I’m sure there are others like you that are looking for the same thing.
Aloha, Eli
Yes, I have been working on this the main problem I am facing is that the code for scanning is deeply intermingled with code for output display. To get to proof of concept I am just using more spaghetti if..else code but ultimately it would be good to separate business logic from the presentation logic.
A reason I want CLI scanning is that once your site is infected opening the admin to do stuff can make it worse. CLI is a bit more isolated.
I agree with tariquesani. A malware scanner does not need to be a plugin. If I could run a scanner at CLI manually or via cron, I can configure log files and email notifications as I like and I can run it against the database directly. Moreover, if WordPress ever becomes compromised, then the plugin may be disabled or compromised as well.
Plugin Author
Eli
(@scheeeli)
I have started working on a command-line version that could be scheduled in your crontab. It has required a lot of new coding to spin off a variant of my plugin that can be run indipendant of WordPress. This new fork is not ready for testing yet but I will make a big announcement when it is available becase it has been requested a lot and I can see how helpful it would be to server administrators.
Thanks for your encouragement 😉
Aloha, Eli
