Title: Lockdown WP Admin Author: Sean Fisher Published: 2011 年 1 月 11 日 Last modified: 2015 年 9 月 28 日 --- 搜尋外掛 這個外掛**並未在最新的 3 個 WordPress 主要版本上進行測試**。開發者可能不再對這個 外掛進行維護或提供技術支援,並可能會與更新版本的 WordPress 產生使用上的相容性問題。 ![](https://s.w.org/plugins/geopattern-icon/lockdown-wp-admin.svg) # Lockdown WP Admin 由 [Sean Fisher](https://profiles.wordpress.org/sean212/) 開發 [下載](https://downloads.wordpress.org/plugin/lockdown-wp-admin.2.3.2.zip) * [詳細資料](https://tw.wordpress.org/plugins/lockdown-wp-admin/#description) * [使用者評論](https://tw.wordpress.org/plugins/lockdown-wp-admin/#reviews) * [安裝方式](https://tw.wordpress.org/plugins/lockdown-wp-admin/#installation) * [開發資訊](https://tw.wordpress.org/plugins/lockdown-wp-admin/#developers) [技術支援](https://wordpress.org/support/plugin/lockdown-wp-admin/) ## 外掛說明 This plugin will hide WordPress Admin (/wp-admin/) when a user isn’t logged in. If a user isn’t logged in and they attempt to access WP Admin directly, they will be unable to and it will return a 404. It can also rename the login URL. Also, you can add HTTP authentication directly from WP Admin and add custom username/ password combinations for the HTTP auth or use the WordPress credentials. This doesn’t touch any .htaccess files or change the WordPress core files. All the CSS/Images under /wp-admin/ are still accessible, just not the .php ones. If you enable HTTP authentication, it will add HTTP authentication to the PHP files in /wp-admin/. To contribute to the development, check out [the GitHub Repository](https://github.com/srtfisher/Lockdown-WPAdmin). ## 安裝方式 1. Upload `/lockdown-wp-admin/` to the `/wp-content/plugins/` directory 2. Activate the plugin through the ‘Plugins’ menu in WordPress 3. Navigate to the “Lockdown WP” menu ## 常見問題集 Installation Instructions 1. Upload `/lockdown-wp-admin/` to the `/wp-content/plugins/` directory 2. Activate the plugin through the ‘Plugins’ menu in WordPress 3. Navigate to the “Lockdown WP” menu How can we add files to the white list to hide from the public eye? We want to have AJAX and use a custom file, but we can’t because it hides it from the public. You can add a file using the ‘no_check_files’ filter. Use this: ``` function add_my_cool_filter($data) { // You have to accept the $data argument or else it will cause a system meltdown ;) $data[] = 'my-file-name.php'; // JUST the file name. return $data; } add_filter('no_check_files', 'add_my_cool_filter'); ``` Simple. How can I get back in if Lockdown WP Admin locked me out? You can create a .txt file named ‘disable_auth.txt’ in your `wp-content/plugins/ lockdown-wp-admin/` folder (The file location would be `/wp-content/plugins/lockdown- wp-admin/disable_auth.txt`). We don’t care about the content but that will disable the HTTP Auth and whatever was locking you out of your site. ## 使用者評論 ![](https://secure.gravatar.com/avatar/25c588d4254d237665f81571ea1aeab3182e28b033d963b39aced99c0252f03b? s=60&d=retro&r=g) ### 󠀁[works perfectly.](https://wordpress.org/support/topic/works-perfectly-2574/)󠁿 [pdwalker](https://profiles.wordpress.org/pdwalker/) 2023 年 1 月 19 日 Still working perfectly in the current version of wordpress. It stops all those annoying bot attacks that any wordpress site gets. Still recommended. ![](https://secure.gravatar.com/avatar/302fec103b64db39d5dc5de8e2037856c830a6df0e45ec58919b4e981e2f3453? s=60&d=retro&r=g) ### 󠀁[Unbelievable!!!](https://wordpress.org/support/topic/unbelievable-63/)󠁿 [yasinvanlioglu](https://profiles.wordpress.org/yasinvanlioglu/) 2019 年 12 月 26 日 This plugin still working! I use on all my sites. Hopefully a new update will be available for longer use. ![](https://secure.gravatar.com/avatar/ccb4344e32f2762120900f7eb023b4d730a2aa53890f3b95967ad896fba5575c? s=60&d=retro&r=g) ### 󠀁[Update](https://wordpress.org/support/topic/update-429/)󠁿 [Rik0399](https://profiles.wordpress.org/rik0399/) 2018 年 10 月 7 日 I’m posting this because we as ‘users’, sometimes take for granted the efforts of plugin authors and seem only to comment when we are ‘whining’ or ‘complaining’. Mostly because many do not simply follow the install procedures, so seek to blame the Author. The Problem : All WP users have is security because your site is constantly under threat. Unless your sitting there watching, one morning you’ll get up and your site has been damaged by some malicious idiot! The Plugin : As of : 07-10-18 this gem of a plugin is still working strong with the latest WP version! Whilst it has not been updated for a few years, it’s still working and does so very effectively against potential threats as wouldbe hackers can’t find how to log into your site. It’s a near impossibility to do so and soon, they give up and choose an easier target. My Two Cents : So for what it’s worth to the Author, very well done for this and can only hope they re-visit this plugin to add any additional elements. I would certainly make a donation toward it if they were to resume and continue maintaining it! It’s lightweight, it works…simple as that! ![](https://secure.gravatar.com/avatar/ec1c98417219e1486f76e3b5b132c7737578fddfdadad08c9f1496996595ece4? s=60&d=retro&r=g) ### 󠀁[It is used to be great but not any more.](https://wordpress.org/support/topic/it-is-used-to-be-great-but-not-any-more/)󠁿 [srjambo](https://profiles.wordpress.org/srjambo/) 2018 年 9 月 3 日 This plugin is simple and easy to setup. I have been using it for two years but with the last Wordpress actualisation (4.9.8) it stopped working. I was locked out and was not able to access to panel administration. I had to delete the plugin. What a pity. ![](https://secure.gravatar.com/avatar/945a8418a8ac0a57bd1968904d4dacf06fb44ab2fc5ff4bbad5dc119016f6952? s=60&d=retro&r=g) ### 󠀁[awesome plugin 😉 OLD but GOLD and works flawlessly in WordPress v4.8.2](https://wordpress.org/support/topic/old-but-gold-3/)󠁿 [wp2sr](https://profiles.wordpress.org/wp2sr/) 2017 年 10 月 9 日 awesome plugin 😉 OLD but GOLD and works flawlessly in WordPress v4.8.2 ![](https://secure.gravatar.com/avatar/bfb159aac0a8e899b01818bc2819f5192795deb8b87affce0addaa090ce90f1b? s=60&d=retro&r=g) ### 󠀁[Sencillo y rápido](https://wordpress.org/support/topic/sencillo-y-rapido-2/)󠁿 [Javier Moreno](https://profiles.wordpress.org/morenojavier/) 2016 年 11 月 14 日 Muy fácil de entender y funciona correctamente. [ 閱讀全部 54 則使用者評論 ](https://wordpress.org/support/plugin/lockdown-wp-admin/reviews/) ## 參與者及開發者 以下人員參與了開源軟體〈Lockdown WP Admin〉的開發相關工作。 參與者 * [ Sean Fisher ](https://profiles.wordpress.org/sean212/) [將〈Lockdown WP Admin〉外掛本地化為台灣繁體中文版](https://translate.wordpress.org/projects/wp-plugins/lockdown-wp-admin) ### 對開發相關資訊感興趣? 任何人均可[瀏覽程式碼](https://plugins.trac.wordpress.org/browser/lockdown-wp-admin/)、 查看 [SVN 存放庫](https://plugins.svn.wordpress.org/lockdown-wp-admin/),或透過 [RSS](https://plugins.trac.wordpress.org/log/lockdown-wp-admin/?limit=100&mode=stop_on_copy&format=rss) 訂閱[開發記錄](https://plugins.trac.wordpress.org/log/lockdown-wp-admin/)。 ## 變更記錄 #### 1.0 * Initial release #### 1.0.1 * Fixed a link to a broken file #### 1.1 * Fixed a bug on activating the plugin network wide, we disabled network wide activation. * Cleaned up the plugin and prevented a double loop of the HTTP check, unnecessary. #### 1.2 * Cleaned up more code. * Security fixes that will prevent somebody from possibly hijacking your website.( Props Jon Cave) #### 1.3.1 * Added the ability to change the login URL entirely. It will disable /wp-login. php and give it whatever you want to make it. #### 1.4 * Fixed a bug with user’s with a index.php base * Added stats for us to collect about about URL setup and server configuration for our users. This will let us make the plugin even better. * Fixed bug for having private user management in WP Admin #### 1.4.2 * Bug fixes * Added `admin-ajax.php` to the files that we permit to be access in wp-admin. #### 1.6 * Added way to get back into WP-ADMIN if locked out (See the FAQ) #### 1.7 * Removed the stats that were collected to that we could understand the issues that users were having with the plugin. #### 1.8 * Finally discovered why so many users had HTTP authentication errors. Fixed it to support almost 80% of hosts out there. * If you still have problems, shoot me an email. #### 1.9 A very late update, sorry! Worked to fix many issues with the admin bar and the “ get_current_screen()” error. If you still see issues, please contact me! #### 2.0 * Provided a system dump to help in debugging issues that may arise. * Fixes a issues on the 404 page under 3.5.1 (`get_current_screen()`) * Cleanup, cleanup! #### 2.0.1 * Bug fix by [Michal Krause](https://github.com/michal-krause) #### 2.0.2 * Query string detection bug fix by [James Bonham](https://wordpress.org/support/profile/jamesbonham) * Issues with WordPress in a sub-directory #### 2.1 * Unit Testing! Unit Testing ensure more reliable code going forward * Support for WordPress 3.6 * General Cleaning #### 2.2 * Fixing issues with other plugins * Support tested for 3.9 * Large code structure changes. If you are extending the `Lockdown_Manager` at all, you should basically check the class anew since it was separated into Admin and Application services. #### 2.3 * Fixing issues with latests WordPress Version * Cleaning of code, enhancements. * Localizing all the strings. ## 中繼資料 * 版本 **2.3.2** * 最後更新 **9 年前** * 啟用安裝數 **10,000+** * WordPress 版本需求 ** 3.6 或更新版本 ** * 已測試相容的 WordPress 版本 **4.3.34** * 語言 * [English (US)](https://wordpress.org/plugins/lockdown-wp-admin/) * 標籤: * [lockdown](https://tw.wordpress.org/plugins/tags/lockdown/)[secure](https://tw.wordpress.org/plugins/tags/secure/) [security](https://tw.wordpress.org/plugins/tags/security/)[vulnerability](https://tw.wordpress.org/plugins/tags/vulnerability/) [WebSite Security](https://tw.wordpress.org/plugins/tags/website-security/) * [進階檢視](https://tw.wordpress.org/plugins/lockdown-wp-admin/advanced/) ## 評分 3.9 星,滿分為 5 星 * [ 33 個 5 星使用者評論 ](https://wordpress.org/support/plugin/lockdown-wp-admin/reviews/?filter=5) * [ 6 個 4 星使用者評論 ](https://wordpress.org/support/plugin/lockdown-wp-admin/reviews/?filter=4) * [ 1 個 3 星使用者評論 ](https://wordpress.org/support/plugin/lockdown-wp-admin/reviews/?filter=3) * [ 2 個 2 星使用者評論 ](https://wordpress.org/support/plugin/lockdown-wp-admin/reviews/?filter=2) * [ 12 個 1 星使用者評論 ](https://wordpress.org/support/plugin/lockdown-wp-admin/reviews/?filter=1) [Your review](https://wordpress.org/support/plugin/lockdown-wp-admin/reviews/#new-post) [查看全部使用者評論](https://wordpress.org/support/plugin/lockdown-wp-admin/reviews/) ## 參與者 * [ Sean Fisher ](https://profiles.wordpress.org/sean212/) ## 技術支援 使用者可在技術支援論壇提出意見反應或使用問題。 [檢視技術支援論壇](https://wordpress.org/support/plugin/lockdown-wp-admin/) ## 贊助 想要支援這個外掛的發展嗎? [ 贊助這個外掛 ](http://seanfisher.co/donate/)