Posted by armand on August 25th, 2008

Hiding Installed Plugins For Security Reason

Do you know that we can see the lists of what plugins have been installed in our wordpress blo? Visitors can see them all by accessing http://www.wpblogname.com/wp-content/plugins. There’s a nice tips I’ve just read and it’s very simple to implement.

Log in to your blog cpanel and upload a blank file named index.php or index.html into your plugins directory. The blank file may contain some code like this:

<?php

?>

Don’t forget to save the file as index.php or index.html. From now on, when someone try to access the URL above, they will see only a blank page, nothing will be displayed. This tip is for security reason only. So, people won’t see what plugins are installed.

There’s also a good idea to redirect it to our blog homepage, then the code will be like this:

<?php

header(”Location:http://www.wpblogname.com/”);

?>

If you want some more privacy, you can also upload this file into wp-content/themes and wp-content/uploads directory with the same results. I’ve found this in a few professional wordpress blogs. We can see the list of themes installed under the themes folder and a list of uploaded files under uploads folder. It’s not a good thing to show it to everyone, right.

That’s all.

6 Responses to “Hiding Installed Plugins For Security Reason”

  1. Brad Blogging.com - Personal Blog Tips And Blog Help Says:

    Thanks for the link love :)

    Glad you liked the post!

    I didn’t think of PHP code for my example..

    Brad Blogging.com – Personal Blog Tips And Blog Helps last blog post..Weekend Wordpress Security Tip: Restrict Your Wp-Admin

    August 25th, 2008 at 1:04 am
  2. armand Says:

    Yup, thanks for the post. I also didn’t think about that hole.

    August 25th, 2008 at 1:30 am
  3. James Mann Says:

    Good tip. I try to email people when I see a folder showing it’s innerds like that.

    I have preached putting an index file in folders but every once in a while I catch myself forgetting to do it so I am glad when I get contacted letting me know I missed it.

    Keep the tips comin’

    August 27th, 2008 at 12:58 am
  4. armand Says:

    Thanks for the feedback James.

    August 27th, 2008 at 1:06 am
  5. Brad Blogging.com - Personal Blog Tips And Blog Help Says:

    Subscribed to your feed.. Keep the good updates comin!

    Brad Blogging.com – Personal Blog Tips And Blog Helps last blog post..Create A “Sidenotes” Section On Your Sidebar

    August 27th, 2008 at 11:27 am
  6. Armand Says:

    @Brad Blogging: Thank you very much.

    Armands last blog post..Deadline Comes Crazy?

    August 27th, 2008 at 3:21 pm
armandbook-comment-form

Armandbook.Com RSS

Recent Readers

BC Recent Viewers

About Armandbook.Com

Armandbook.Com is a blogging resource, blogging tips and tutorials, internet and gadget, and some other personal stuffs. Armandbook.Com provides free Wordpress themes too and designs custom blog themes. More