Title: GhostGate Author: codegee0958 Published: 2025 年 8 月 28 日 Last modified: 2026 年 1 月 21 日 --- 搜尋外掛 ![](https://ps.w.org/ghostgate/assets/banner-772x250.jpg?rev=3351716) ![](https://ps.w.org/ghostgate/assets/icon-256x256.png?rev=3351716) # GhostGate 由 [codegee0958](https://profiles.wordpress.org/codegee0958/) 開發 [下載](https://downloads.wordpress.org/plugin/ghostgate.1.3.3.zip) * [詳細資料](https://tw.wordpress.org/plugins/ghostgate/#description) * [使用者評論](https://tw.wordpress.org/plugins/ghostgate/#reviews) * [安裝方式](https://tw.wordpress.org/plugins/ghostgate/#installation) * [開發資訊](https://tw.wordpress.org/plugins/ghostgate/#developers) [技術支援](https://wordpress.org/support/plugin/ghostgate/) ## 外掛說明 **GhostGate** is a lightweight yet powerful WordPress security plugin that eliminates the login page as an attack surface. Instead of just defending, it **erases the entrance** entirely with dynamic login URLs and multi-layer access verification. * 🔒 Hide your login URL with a custom slug and time-based code * 🔑 Built-in 2FA via email verification * 🚫 Auto-block brute force attacks by IP * 🧱 Disable/limit unused endpoints like XML-RPC and REST API * 👤 Prevent user enumeration via REST, RSS, and author queries * 🔍 Visualize security status and detect conflicts * 📜 Activity logs with optional file rotation GhostGate doesn’t just defend — it disappears. Invisible to bots. Intuitive for users. 👉 **Full features / screenshots / pricing / docs**: https://arce-experience.com/ product/ ### Privacy GhostGate can store the following data locally on your site to provide rate-limiting and security auditing: – IP addresses (for temporary throttling / block lists) – Timestamps and event metadata (login attempts, REST/XML-RPC hits) – Optional log files under `wp-content/uploads/ghostgate/logs` (if enabled) No data is sent to third-party services. Site owners are responsible for informing users/visitors where required by local laws. You can clear blocks/logs from the admin UI or by deleting the log files. ## 螢幕擷圖 * [[ * Admin settings page with tabbed UI * [[ * Security status diagnostics * [[ * IP block log and unblock controls * [[ * Access code input screen for login URL (e.g., date-based code) * [[ * Security explanation tab ## 安裝方式 1. Upload the plugin folder to `/wp-content/plugins/ghostgate` 2. Activate the plugin via the Plugins menu 3. Go to **GhostGate > Settings** and configure your gate logic 4. Optionally enable 2FA, IP blocking, REST/API controls, and more Need help with setup? See the installation & setup video: https://arce-experience. com/product/ ## 常見問題集 ### Is GhostGate compatible with other security plugins? Yes. It detects common conflicts and shows visual warnings. You can use it alongside plugins like Wordfence or iThemes. ### What happens if I forget my login code or get locked out? You can always access your site via recovery mode or disable the plugin via FTP if needed. ### Does it affect performance? GhostGate is built for speed. It only runs at login and admin hooks, keeping overhead minimal. ## 使用者評論 這個外掛目前沒有任何使用者評論。 ## 參與者及開發者 以下人員參與了開源軟體〈GhostGate〉的開發相關工作。 參與者 * [ codegee0958 ](https://profiles.wordpress.org/codegee0958/) [將〈GhostGate〉外掛本地化為台灣繁體中文版](https://translate.wordpress.org/projects/wp-plugins/ghostgate) ### 對開發相關資訊感興趣? 任何人均可[瀏覽程式碼](https://plugins.trac.wordpress.org/browser/ghostgate/)、查看 [SVN 存放庫](https://plugins.svn.wordpress.org/ghostgate/),或透過 [RSS](https://plugins.trac.wordpress.org/log/ghostgate/?limit=100&mode=stop_on_copy&format=rss) 訂閱[開發記錄](https://plugins.trac.wordpress.org/log/ghostgate/)。 ## 變更記錄 #### 1.3.3 – 2026-01-21 * Compatibility: Verified support for WordPress 6.9. * Fix: Enhanced PHP 8.x compatibility (stricter type casting in internal key generation). * Fix: Improved login slug detection to strictly handle trailing slashes, preventing 404 errors in some server configurations. #### 1.3.2 – 2025-09-24 * Fix – Resolved “Undefined variable $user_login / $errors” warnings on the login screen. * Fix – Prevented potential “headers already sent” issues. * Improvement – Hardened login flow compatibility with core. * Improvement – Minor internal refactors around request path normalization. #### 1.3.0 – 2025-09-22 * Security: Strengthened “Hide wp-json structure”. * Fix: Route allowlist UI now correctly preserves selections for regex endpoints. * Fix: Resolved rare fatal error on “Unblock IP” admin action. * Tested: Confirmed compatibility with WordPress 6.8. #### 1.2.1 * Tweak: Added brand header (logo + subtitle) to the code entry screen. * Tweak: Minor CSS polish. #### 1.2.0 * New: Added an option to block direct access to preview URLs. #### 1.1.1 * Maintenance and compliance improvements. #### 1.1.0 * REST/JSON structure stealth options. #### 1.0.0 * Initial public release. ## 中繼資料 * 版本 **1.3.3** * 最後更新 **4 個月前** * 啟用安裝數 **20+** * WordPress 版本需求 ** 5.8 或更新版本 ** * 已測試相容的 WordPress 版本 **6.9.4** * PHP 版本需求 ** 7.4 或更新版本 ** * 語言 * [English (US)](https://wordpress.org/plugins/ghostgate/) * 標籤: * [limit login attempts](https://tw.wordpress.org/plugins/tags/limit-login-attempts/) [rest-api](https://tw.wordpress.org/plugins/tags/rest-api/)[security](https://tw.wordpress.org/plugins/tags/security/) [two factor authentication](https://tw.wordpress.org/plugins/tags/two-factor-authentication/) [xml-rpc](https://tw.wordpress.org/plugins/tags/xml-rpc/) * [進階檢視](https://tw.wordpress.org/plugins/ghostgate/advanced/) ## 評分 這個項目尚無任何評論記錄。 [Your review](https://wordpress.org/support/plugin/ghostgate/reviews/#new-post) [查看全部使用者評論](https://wordpress.org/support/plugin/ghostgate/reviews/) ## 參與者 * [ codegee0958 ](https://profiles.wordpress.org/codegee0958/) ## 技術支援 使用者可在技術支援論壇提出意見反應或使用問題。 [檢視技術支援論壇](https://wordpress.org/support/plugin/ghostgate/)