my WP site is up to date with the latest WP.
There are plugin made for that purpose, however a bot that it’s aiming for a vulnerability doesn’t care about your version, so it’s important to keep wordpress updated to the latest version.
Then consider protecting your login page from brute force attacks by requiring CAPTCHA and/or 2 factor authentication.
Obscurity is not security. My sites get probed for all sorts of uninstalled plugins; most bots don’t bother to check. They just hammer away.
OK that being said. I was really concerned about people knowing the platform you are running and how you are running it. Someone could make exactly your kind of site if they run it in this WPTHEMEDETECTOR website and i don’t think it’s good.
I want to be able to hide my theme and plugins from things like that so that it is not public. I am aware that it wont solve security, but i am concerned of privacy.
Moderator
Jan Dembowski
(@jdembowski)
Forum Moderator and Brute Squad
How to hide your WP site from theme and plugin detectors
You really can’t and there’s not really any reason to. I do get the privacy thing but visitors have to load the theme for it to work.
OK that being said. I was really concerned about people knowing the platform you are running and how you are running it. Someone could make exactly your kind of site if they run it in this WPTHEMEDETECTOR website and i don’t think it’s good.
As Steve pointed out, that’s not security. Hiding what your platform is doesn’t do anything to make it more secure. The bots that probe your site will try those exploits for old versions anyway even if they do not detect your platform.
If you want to address that security concern then keep your code up to date. That’s still the best way.
There is a plugin on CodeCanyon.net called Hide My WP that might help you.
I think there is also a similar plugin called Swift Security.
