Is Jetpack Bloated? More Data that Debunks the Myth

This article was originally published on the BruteProtect blog. BruteProtect was a plugin designed to stop malicious IPs from accessing WordPress websites. The technology behind BruteProtect is now part of Jetpack’s security features, protecting millions of website from brute force attacks every day.

Thanks for all the feedback and shares on Part 1, see that post for more info on which modules in Jetpack are activated by default and which “Other” plugins we used to test against.

There have been a number of requests for us to show what WordPress core (with no plugins) and Jetpack activated but all modules deactivated looks like, so here we go.

Note that all of the numbers have changed a bit because we re-ran all tests from scratch with an updated version of WebPageTest.

About our testing methodology:
Tests were run from a private instance of WebPageTest, run from an EC2 instance within 1ms of our test subject server. Each test was run 27 times, and we used the median score for each factor. The test server had no other traffic on it while these tests were being performed.

Still have questions about the Jetpack plugin? Contact support or search documentation for quick answers.

Jesse Friedman

Jesse Friedman has been building websites for 20 years, and exclusively with WordPress since 2006. Jesse has written several books, taught 100’s of students as a professor, and organized dozens of local meetups along with a few WordCamps. Jesse has spoken at tech conferences around the world including SXSW, HOW, Future events and many more; and has consulted for a wide array of companies from small agencies to multi-billion dollar international companies. Today Jesse is the VP of Innovation and Partnership Success for Jetpack at Automattic, where he spends his time working on partnership and marketing strategies.