Theme & Plugins Exposed in Detectors

  • Resolved nagarig

    (@nagarig)


    4 years, 6 months ago

    I do not want to get themes & plugins exposed by theme detectors available on the internet like wpthemedetector.com (There are so many) for security concerns. I am using a security plugin to hide themes, plugin detection. But it looks like, they are still identified. We are also getting many IPs list trying to attack theme files and folders. So we REALLY NEED to hide the name. PLEASE HELP.

Viewing 1 replies (of 1 total)
  • Plugin Author Paul

    (@paultgoodchild)

    This is not something Shield, or any security plugin, can do unfortunately.

    Furthermore, what you’re describing is “Security through obscurity”, which isn’t protection.

    Hackers/bots can and will attempt to exploit your plugins and themes regardless of whether or not they know what you have installed. They’ll just try it, and if they get a hit, they’ll keep at it. Hiding the “names” of what’s there wont prevent that.

    What will prevent trouble is ensuring all your plugins and themes are kept uptodate – then it doesn’t matter what they try or what they know.

    You can also use Shield’s Bot detection features and also Traffic Rate Limiting to detect possible bots and then block them altogether, no matter what they try.

    Hope this helps.

Viewing 1 replies (of 1 total)
  • The topic ‘Theme & Plugins Exposed in Detectors’ is closed to new replies.