plugin-icon

Disable Feeds And Hide Usernames

제작자: thapa.laxman·
This tiny and lightweight plugin removes all the rss feeds and hides usernames.
disable feeds
hide username
remove rss
등급
4/5
버전
1.1
활성화된 설치 항목
300
최근 업데이트일
Dec 28, 2018

Disable Feeds And Hide Usernames

removes the rss feeds like below. For a simple CMS site it is not required. * http://example.com/feed/ * http://example.com/feed/rss/ * http://example.com/feed/rss2/ * http://example.com/feed/rdf/ * http://example.com/feed/atom/

Why Hide WordPress Usernames

WordPress usernames can easily be guessed. If guessed it makes the attackers’ life easier especially in case of a targeted WordPress hack attack. Attackers can use a tool such as WPScan to guess your WordPress username or simply by entering a URL such as the following:

http://www.example.com/?author=1

If the author ID is valid then they will be redirected to the author URL, for example:

http://www.example.com/author/admin

The above is possible even when you change the WordPress user IDs. For example if you changed the user ID to 1000, then by requesting the URL http://www.example.com/?author=1000 the attacker can guess the username. This means that you would be delaying the guessing attack but not completely eliminating it.

WordPress usernames can also be found in the source of rss feeds.

Disable Feeds And Hide Usernames

hides the usernames to make it harder for the attacker.

무료Business 요금제에서
시작하기
설치하면 WordPress.com 서비스 약관서드파티 플러그인 약관에 동의하게 됩니다.
테스트된 버전
WordPress 5.0.24
이 플러그인은 다운로드할 수 있으며 에서 사용할 수 있습니다.
다운로드