Tries its best to keep your blog super secret. Makes your blog private, with no traces of people knowing a blog exists. A 404 Not Found is returned in
| Author: | Ezwan Aizat Bin Abdullah Faiz (profile at wordpress.org) |
| WordPress version required: | 2.9 |
| WordPress version tested: | 3 |
| Plugin version: | 0.1 |
| Added to WordPress repository: | 24-03-2010 |
| Last updated: | 12-04-2010
Warning! This plugin has not been updated in over 2 years. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress.
|
| Rating, %: | 0 |
| Rated by: | 0 |
| Plugin URI: | http://blog.aizatto.com/super-secret/ |
| Total downloads: | 1 440 |
 Click to start download |
|
Super Secret makes your blog private. This means, to whoever is registered on the system. The biggest difference between Super Secret and other membership plugins is that the membership plugin redirects you to the WordPres login page, Super Secret does not. Super Secret will return a proper 404 HTTP Header, telling browsers that the website is not found. It will also display a “Not Found” generic dummy page.
This doesn’t mean your website is 100% hidden from everyone who attends it. Users can still see wp-login.php
When you publish a post, WordPress notifies other blogs linked to from your post. This could give away the presense of your blog! Make sure you disable all of these!
Inside “Settings > Discussion Settings > Default article settings”:
- Disable “Attempt to notify any blogs linked to from the article.”
- Disable “Allow link notifications from other blogs (pingbacks and trackbacks.)”“
Inside “Settings > Privacy Settings”:
- Select “I would like to block search engines, but allow normal visitors”.
Other give aways that your blog exist is trying to access ‘wp-admin’ (without the blackslash at the end). If configured correctly, Apache will redirect you to ‘wp-admin/’. This is a clear sign that a blog exists at your domain.
This is not a full proof plugin. There is no such thing as truly secure. You can only deter people.
Why I Created It
- Other plugins that blocked people from viewing the site redirected them to the login page.
- I wanted to return a proper 404 error, and generic dummy page. This is to prevent anyone or computer form guessing the website exists.
Screenshots
