Este plugin no se ha probado con las últimas 3 versiones mayores de WordPress. Puede que ya no tenga asistencia ni lo mantenga nadie, o puede que tenga problemas de compatibilidad cuando se usa con las versiones más recientes de WordPress.

Secure Messaging

Descripción

Automatically encrypt certain WordPress messages using your GPG public key to ensure no one but you can ever read the message.

This is primarily used to secure password reset emails so, even if an attacker were to gain access to your email account, they couldn’t change your WordPress password.

Instalación

Requirements

This plugin requires PHP 7 or greater to operate. It does not check for PHP compatibility directly and will not work if installed on an older server.

The GPG functionality requires GPG to be installed and available to WordPress. The plugin will try to test for this functionality upon activation, but will not work if GPG is unavailable.

Manual Installation

  1. Upload the entire /secure-messaging directory to the /wp-content/plugins/ directory.
  2. Activate Secure Messaging through the ‘Plugins’ menu in WordPress.

Preguntas frecuentes

Installation Instructions

Requirements

This plugin requires PHP 7 or greater to operate. It does not check for PHP compatibility directly and will not work if installed on an older server.

The GPG functionality requires GPG to be installed and available to WordPress. The plugin will try to test for this functionality upon activation, but will not work if GPG is unavailable.

Manual Installation

  1. Upload the entire /secure-messaging directory to the /wp-content/plugins/ directory.
  2. Activate Secure Messaging through the ‘Plugins’ menu in WordPress.
Does the server sign messages as well?

Not by default. On many installations, the GPG keychain folder needs to live in the /wp-content directory and might be readable by third parties. To avoid leaking GPG secret keys, none are ever added by the system in the first place. This means the server can’t sign messages before they’re sent.

Is there a limit to the size of the GPG key I can use?

Not to my knowledge. We’re using Pear’s Crypt_GPG module, which defer’s to the server’s GPG module directly. So long as GPG itself supports a key, this plugin will as well.

What if my host doesn’t support GPG?

Not every host does. Most self-hosting platforms will have GPG support by default, but some (like WP Engine) do not support the GPG subsystem and will not allow you to proactively encrypt messages.

I highly suggest you look into a managed host like Liquid Web, who does support GPG, for your hosting needs.

Note: This plugin has been tested to work with both Liquid Web’s managed WordPress hosting platform and the Dockerized WordPress system published by 10up.

Reseñas

No hay reseñas para este plugin.

Colaboradores y desarrolladores

“Secure Messaging” es un software de código abierto. Las siguientes personas han colaborado con este plugin.

Colaboradores

Traduce “Secure Messaging” a tu idioma.

¿Interesado en el desarrollo?

Revisa el código , echa un vistazo al repositorio SVN , o suscríbete al log de desarrollo por RSS .

Registro de cambios

0.4.1

  • Fix: Explicitly add Eric Mann’s public key for the GPG subsystem test

0.4.0

  • Update: Store the public key fingerprint instead of the entire key for better references later
  • Update: Introduce the SECUREMSG_KEYCHAIN_DIR constant for overriding where keys are stored
  • Fix: Test for the presence of the GPG subsystem upon activation to prevent downstream errors

0.3.0

  • Update: Switch to the Pear GPG library for better RSA compatibility

0.2.0

  • Update: Use a new GPG library for better PHP compatibility
  • Update: Add nonce checks on the profile page
  • Update: Add Romanian translations

0.1.0

  • First release