Posted 2 years ago #
Hello,
I made a password protected page. The problem is that the attachments of the page are accessible without a password.
Example of post: http://www.salasaragon.com.ar/carboni/
Example of attach: http://www.salasaragon.com.ar/carboni/1268743374-wv5r7484/
Thanks, greetings.
Hi ggsalas,
I took a look at your question. I don't think you need to worry about that, because potential attackers/breachers would have to know the attachment number (1268743374-wv5r7484), and if the parent folder is protected, it would be extremely difficult for them to retrieve it. For instance, when I view the source code of the parent page, the number is not appearing and there are no signs that the page even has attachments.
I hope this helps. If it doesn't, and you still want extra protection, I suggest you look into online security software (there are a lot of options out there for what you're trying to accomplish). Since I don't use one myself, I wouldn't know which one to recommend you.
Cheers!
Posted 2 years ago #
Hi Marventus,
I make a new question:
Search engines do not index attachments wordpress, when they upload on a page protected? Perhaps the attachment appears in the site map (on my website using the plugin "Google XML Sitemaps")
Thanks.
Hi again,
I am not sure. You can check if the protected pages in question appear in the Sitemap generated by the plugin, since I'm pretty sure there's a command by which you can actually display the map in your site.
If the protected pages do appear, my best suggestion would be to use custom fields to "hide them" from spiders and bots. Here is a very useful article I always resort and refer others to when I'm trying to figure out what I can do with custom fields in WP (check tip #8).
Hope that helps.
Posted 2 years ago #
Not appear in the sitemap. I hope wordpress notify search engines not to index password protected pages. I'll read more about the subject, in any case already have your solution.
Thank you.
This topic has been closed to new replies.
