You can just remove the file and the .user… file and all of this is disabled. I don’t see the issue, how else do you want protection in front of wordpress calls ? If you even have the choice of activating this or not and deactiviation is clearly mentioned howto do it. Please do not underrate decent software, developers put a lot of effort to give free tools to the community, think about that.
Hello, @jeremiewp
Thanks for the feedback. We do mention in our documentation for firewall optimization that the optimization may need to be removed during site migration: https://www.wordfence.com/help/firewall/optimizing-the-firewall/#removing-the-optimization
If you need any help in the future, please feel free to open a forum case.
Thanks,
Scott
