plugin-icon

Invalidate Logged Out Cookies

Von laceous·
This plugin will immediately invalidate your auth cookies when you manually log out.
cookies
login
logout
Bewertungen
Füge deine Bewertung hinzu
Version
0.1.1
Aktive Installationen
10
Zuletzt aktualisiert
May 22, 2010

Due to lack of interest (both my own and based on the number of downloads) this plugin will not be updated for WP 3.0

WordPress‘ auth cookies include a built-in expiration date (either 2 or 14 days depending on if the ‚Remember Me‘ option is checked). Even if you remove the client-side cookie (by manually logging out or just closing your browser if ‚Remember Me‘ wasn’t checked when logging in) the data that was stored within the cookie is still valid until the expiration date is reached.

This could be an issue if someone managed to „steal“ your cookie(s). They would still be able to access your website for some time into the future.

This plugin will immediately invalidate your auth cookies when you manually log out. This, of course, also means that you have to manually click ‚Log out‘ for this plugin to work properly (you can’t just close your browser to remove any cookies that expire at the end of the session). This won’t prevent session hijacking, but should limit the amount of time that an attacker can access your website.

Kostenlosmit kostenpflichtigen Tarifen
Jetzt starten
Mit deiner Installation stimmst du den Geschäftsbedingungen von WordPress.com sowie den Bedingungen für Drittanbieter-Plugins zu.
Getestet bis
WordPress 2.9.2
Dieses Plugin steht für deine -Website zum Download zur Verfügung.
Herunterladen