I’ve got a couple of Wordpress-based sites running on a PS.
I just noticed yesterday that the /stats/ directory for both sites is wide open and it seems anyone can see the site’s Analog/Dreamhost stats just by visiting mydomain.com/stats/.
On my shared hosting based WP sites I just get a 404 error if I try to do this. This is pretty much the desired behaviour (for me, at least).
So, is it something I’ve forgotten to set up or a box I should have ticked, or does this happen to everyone? And, more importantly, how can I stop these stats revealing themselves to the world?