Source evidence

Problem with “Disable ability to edit PHP files:”

All-In-One Security (AIOS) – Security and Firewall · support · 2026-06-03T09:13:00+00:00

All-In-One Security (AIOS) – Security and Firewall plugin evidence original source source API

mixedsentiment

highseverity

0.95relevance

4replies

Evidence linked to opportunitycommercial context

Proof Health

Open evidence

Commercial opportunities need traceable source links before they are treated as build-worthy.

6 / 32 rows with source links

18.8% of this page's analysis has direct source links.

0 build-decision rows missing links

0 rows here require auditable proof before promotion.

26 rows with no attached evidence

0 rows have source counts but still need direct links.

Conversation

support

viche resolved

After installing the plugin on new sites I always turns “Disable ability to edit PHP files” ON. Sometimes I temporarily switch it OFF and it has never been a problem. Recently I start to got this message on several sites when turning it OFF: The DISALLOW_FILE_EDIT constant has already been defined, please remove it before enabling this feature. The constant is likely already defined in your wp-config.php file. I have verified this on several sites running on different hosts with different themes. Please advice. Thanks in advance. //Niclas Hi @viche , AIOS > File security > File protection tab can you see the warning as below image ? Please cross check your wp-config.php file. The DISALLOW_FILE_EDIT constant has already been defined, please remove it before enabling this feature. The constant is likely already defined in your wp-config.php file. https://snipboard.io/3xsDKC.jpg Do you have any another security plugin installed? It might be DISALLOW_FILE_EDIT being added. AIOS adds below code to wp-config.php //Disable File Edits if (!defined('DISALLOW_FILE_EDIT')) { define('DISALLOW_FILE_EDIT', true); } Yes, it looks like your image. No other security plugin installed. need to check wp-config. Hi! I apologize. I was wrong. It was the Patchstack plugin that was the cause. In their cloud settings there was the setting. However, it was designed with such language that I missed it. Of course my fault. Hi @viche Glad to know issue is identified. Would you mind writing a quick five-star review on wordpress.org? https://wordpress.org/support/plugin/all-in-one-wp-security-and-firewall/reviews/#new-post Reviews also help others to make confident decisions about our plugin. Regards

Commercial Context

Opportunity

trust and abuse-prevention operations

Security abuse-prevention assurance for keeping sites trusted, protected, and recoverable

Buyer: site owners, agencies, and maintenance teams

Wedge: test security lockouts, bot/spam defenses, risky access changes, and incident alerts

Proof Blocked card complete market

Analysis

heuristic-v1

Summary: Problem with “Disable ability to edit PHP files:”: users show security, bugs, compatibility pain that may indicate a product gap.

Evidence quote: Problem with “Disable ability to edit PHP files:” After installing the plugin on new sites I always turns “Disable ability to edit PHP files” ON.

Affected feature: security

security bugs compatibility missing feature

Plugin

API

All-In-One Security (AIOS) – Security and Firewall

1.0M active installs · 37.6M downloads · rating 94.0

firewall login security malware scanning security two factor authentication

Comments

4 shown

hjogiupdraftplus 2026-06-03T09:46:00+00:00

Hi @viche , AIOS > File security > File protection tab can you see the warning as below image ? Please cross check your wp-config.php file. The DISALLOW_FILE_EDIT constant has already been defined, please remove it before enabling this feature. The constant is likely already defined in your wp-config.php file. https://snipboard.io/3xsDKC.jpg Do you have any another security plugin installed? It might be DISALLOW_FILE_EDIT being added. AIOS adds below code to wp-config.php //Disable File Edits if (!defined('DISALLOW_FILE_EDIT')) { define('DISALLOW_FILE_EDIT', true); }

viche 2026-06-03T10:41:00+00:00

Yes, it looks like your image. No other security plugin installed. need to check wp-config.

viche 2026-06-03T11:59:00+00:00

Hi! I apologize. I was wrong. It was the Patchstack plugin that was the cause. In their cloud settings there was the setting. However, it was designed with such language that I missed it. Of course my fault.

hjogiupdraftplus 2026-06-04T04:51:00+00:00

Hi @viche Glad to know issue is identified. Would you mind writing a quick five-star review on wordpress.org? https://wordpress.org/support/plugin/all-in-one-wp-security-and-firewall/reviews/#new-post Reviews also help others to make confident decisions about our plugin. Regards