Support » Plugin: Hide My WP Ghost - Security Plugin » wordpress_logged_address

  • Resolved ejam18000


    Is it possible to unset, remove or set into the past wordpress_logged_address cookie when a user logs out verses waiting for browser session to end.

    This cookie appears to be set by hide my ghost and when a user logs in and then logs out the cookie session remains causing a no-cache header to be served by varnish cache.

    We have tried to exclude this cookie in varnish but issue still persists and since we do not know what it does we do not want to exclude if possible. Many times users log in and then log out and do not close their browsers for days. This is causing a two fold impact

    #1 speed do to origin pull when a cache header should be sent
    #2 ttfb increase do to the origin pull when the user is logged out

    Awesome plugin

    Thank you!

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author WP Security – John Darrel



    Thank you for your feedback.

    Can you add this line at wp-content/plugins/hide-my-wp/models/Cookies.php line:132 ?

    setcookie(‘wordpress_logged_address’, ‘ ‘, time() – YEAR_IN_SECONDS, HMW_ADMIN_COOKIE_PATH, $this->getCookieDomain());

    it will empty the wordpress_logged_address cookie on user logout or WordPress logout hook.

    We will add this fix in the next version of the plugin.


    Plugin Author WP Security – John Darrel


    If you liked the support and the plugin please help us with a short review on

    Thank you so much,

    Works flawlessly for those that will cut and past from this post I included the syntax below as the ‘ ‘ and – probably were typed in word or rtf which puts a different character especially when word autocorrects to the pretty open and close quotes and threw a http 500 error. I am not sure but I also matched the exact syntax and correct me if needed to be placed back but matching I removed the ‘ ‘ around the cookie as was on lines 131-134 of the cookies.php

    Syntax with ‘ ‘ and – proper

    setcookie(wordpress_logged_address, ‘ ‘, time() – YEAR_IN_SECONDS, HMW_ADMIN_COOKIE_PATH, $this->getCookieDomain());

    Thank you again John!! Cheers!!

    Apologies but it is this editor (wp support) that is transposing the ‘ ‘ when cutting and pasting as my post does the same as John’s. I am sure all know this but for those that do not make sure the ‘ ‘ – are corrected if cutting and pasting.



Viewing 4 replies - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.