New: Optional wp-config configuration mode. Define SMTP settings in wp-config.php to lock the admin UI and prevent dashboard changes. Includes additional edge-case hardening and reliability improvements.<\/p>","1.1.0":"
Major Update: Switched to native WP Settings API for stability and fixed caching issues. Plugin size reduced to ~3KB (yup, you read that right).<\/p>"},"ratings":{"1":0,"2":0,"3":0,"4":0,"5":1},"assets_icons":{"icon-128x128.png":{"filename":"icon-128x128.png","revision":3424486,"resolution":"128x128","location":"assets","locale":""}},"assets_banners":{"banner-1544x500.png":{"filename":"banner-1544x500.png","revision":3424466,"resolution":"1544x500","location":"assets","locale":""},"banner-772x250.png":{"filename":"banner-772x250.png","revision":3424466,"resolution":"772x250","location":"assets","locale":""}},"assets_blueprints":{},"all_blocks":[],"tagged_versions":["1.0.0","1.1.0","1.2.0"],"block_files":[],"assets_screenshots":{"screenshot-1.png":{"filename":"screenshot-1.png","revision":3476079,"resolution":"1","location":"assets","locale":""},"screenshot-2.png":{"filename":"screenshot-2.png","revision":3476112,"resolution":"2","location":"assets","locale":""}},"screenshots":{"1":"Simple SMTP settings interface.","2":"Forced configuration mode via wp-config.php (read-only admin UI)."},"jetpack_post_was_ever_published":false},"plugin_section":[],"plugin_tags":[267,897,450,257230,6696],"plugin_category":[41],"plugin_contributors":[252008],"plugin_business_model":[],"class_list":["post-268742","plugin","type-plugin","status-publish","hentry","plugin_tags-email","plugin_tags-gmail","plugin_tags-mail","plugin_tags-no-bloat","plugin_tags-smtp","plugin_category-communication","plugin_contributors-realpinny","plugin_committers-realpinny"],"banners":{"banner":"https:\/\/ps.w.org\/pinnys-simple-smtp\/assets\/banner-772x250.png?rev=3424466","banner_2x":"https:\/\/ps.w.org\/pinnys-simple-smtp\/assets\/banner-1544x500.png?rev=3424466","banner_rtl":false,"banner_2x_rtl":false},"icons":{"svg":false,"icon":"https:\/\/ps.w.org\/pinnys-simple-smtp\/assets\/icon-128x128.png?rev=3424486","icon_2x":false,"generated":false},"screenshots":[{"src":"https:\/\/ps.w.org\/pinnys-simple-smtp\/assets\/screenshot-1.png?rev=3476079","caption":"Simple SMTP settings interface."},{"src":"https:\/\/ps.w.org\/pinnys-simple-smtp\/assets\/screenshot-2.png?rev=3476112","caption":"Forced configuration mode via wp-config.php (read-only admin UI)."}],"raw_content":"\n
Pinny's Simple SMTP is a ultra lightweight SMTP plugin weighing in at just 4KB.<\/strong> It\u2019s simple to use, highly secure, and includes all the basic features you need to send emails reliably.<\/p>\n\n Tired of bloated setup wizards, \"Connect Account\" popups, and endless menus?<\/p>\n\n Pinny's Simple SMTP is designed to be invisible.<\/strong> We removed the fluff so you can get back to work.\n1. Enter your Host & Port.\n2. Enter your Login.\n3. Click Save.<\/p>\n\n That\u2019s it. You are done.<\/strong>\nThere is no complex UI to learn. No dashboards to manage. It is a true \"Set and Forget\"<\/strong> solution that just works.<\/p>\n\n Unlike most SMTP plugins (which are typically 2MB+ in size), Pinny's Simple SMTP is ultra-lightweight,<\/strong> easy to set up, and never compromises on security. We ensure your sensitive credentials are always protected with automatic encryption<\/strong>\u2014no more storing passwords in plain text.<\/p>\n\n This plugin is different.<\/strong> It\u2019s smaller than a favicon,<\/strong> works with any mail provider,<\/strong> and takes just seconds to set up.<\/p>\n\n Features:<\/strong><\/p>\n\n Pinny's Simple SMTP supports configuration directly from When enabled, the plugin automatically switches the admin interface to read-only mode<\/strong>.<\/p>\n\n To enable this mode, add the following constants to your Once Note: If Pinny's Simple SMTP<\/strong> is built on a strict security philosophy: WordPress is a CMS, not an Email Archive.<\/strong><\/p>\n\n Most SMTP plugins log every email sent from your site into your WordPress database. While this seems convenient, it introduces massive security risks, database bloat, and privacy violations.<\/p>\n\n We feature a Zero-Retention Architecture<\/strong>. We connect, deliver, and vanish. Here is why this is safer for you:<\/p>\n\n Storing email logs in your database creates a high-value target for hackers.<\/p>\n\n If you need to track email delivery, do it where it belongs: At your Email Provider.<\/strong><\/p>\n\n Pinny\u2019s Simple SMTP<\/strong> is built on a strict performance philosophy: Do not load code you do not use.<\/strong><\/p>\n\n The industry standard is to force users into OAuth (Log in with Google\/Microsoft). While this looks fancy, for a WordPress plugin, it is technically inferior to standard SMTP. Here is why we deliberately stripped OAuth out of Pinny\u2019s:<\/p>\n\n 1. The \u201cUniversal Adapter\u201d Trap (Bloat)<\/strong>\nMost users connect to one<\/strong> provider (e.g., just Gmail). However, to support OAuth, other plugins must bundle massive SDK libraries for 10\u201315 different services (Google, Microsoft, Amazon, Yahoo, Zoho, etc.).<\/p>\n\n 2. The Complexity Risk (Security)<\/strong>\nIn security, Complexity is the Enemy.<\/strong> OAuth flows require redirects, token storage, refresh tokens, and constant API updates. Every external library added to a plugin increases the \u201cAttack Surface\u201d\u2014more code means more places for bugs to hide.<\/p>\n\n 3. The Reality of \"Shared OAuth Infrastructure\"<\/strong>\nMany plugins advertise \u201cone-click OAuth login\u201d<\/strong> for Gmail or Microsoft 365. To provide this convenience without requiring users to create their own developer credentials, these plugins typically authenticate through a shared OAuth application (Client ID and Secret) owned by the plugin developer.<\/strong><\/p>\n\n This creates several potential risks including:<\/p>\n\n Pinny\u2019s Simple SMTP<\/strong> avoids these dependencies entirely by using direct SMTP authentication,<\/strong> allowing your site to communicate directly with your mail server without shared OAuth infrastructure.<\/strong><\/p>\n\n 4. App Passwords: The Superior Choice<\/strong>\nWe use App Passwords<\/strong> (Standard SMTP Authentication). This is the secure, recommended method for server-side mailing (Gmail\/Workspace & Microsoft 365).<\/p>\n\n - Download the plugin ZIP file.\n- In your WordPress admin dashboard, navigate to Plugins > Add New<\/strong>, and click Upload Plugin<\/strong>.\n- Choose the ZIP file you downloaded and click Install Now<\/strong>.<\/p>\n\n - Once installed, click Activate<\/strong> to enable Pinny\u2019s Simple SMTP.<\/p>\n\n - Go to Settings > Pinny\u2019s SMTP<\/strong> in the admin menu.\n- Enter your SMTP host, port, and other settings.\n- Save your changes.<\/p>\n\n - Enter a test email address and click Send Test Email<\/strong> to verify your SMTP configuration.<\/p>\n\n\n Setting it up is easy! Just enter your SMTP Host, Port, and Login credentials in the plugin settings, then click Save. That's it!<\/p><\/dd>\n Yes! However, because we don't use bloated OAuth libraries, you must use an App Password<\/strong> generated by Google or Microsoft in place of your standard login password.<\/p><\/dd>\n Your SMTP password is automatically encrypted in the database using WordPress salts. We never store credentials in plain text, ensuring your data is secure.<\/p><\/dd>\n Pinny's Simple SMTP is 4KB, the ultra lightweight SMTP plugin on WordPress. It\u2019s quick to set up, secure with encrypted passwords, and has zero bloat\u2014no ads, upsells, or unnecessary features.<\/p><\/dd>\n\n<\/dl>\n\n\n\ud83d\ude80 Super Easy 30-Second Configuration<\/h3>\n\n
\n
wp-config.php<\/code> and lock the admin UI.<\/li>\n<\/ul>\n\n\n\n\u2699\ufe0f Advanced: Configure SMTP via wp-config.php<\/h3>\n\n
wp-config.php<\/code><\/strong>, allowing administrators and developers to lock SMTP settings and prevent changes from the WordPress dashboard<\/strong>.<\/p>\n\nwp-config.php<\/code> file<\/p>\n\ndefine('PINNYS_SMTP_FORCE', true);\n\ndefine('PINNYS_SMTP_ENABLED', true);\ndefine('PINNYS_SMTP_HOST', 'smtp.gmail.com');\ndefine('PINNYS_SMTP_PORT', 587);\ndefine('PINNYS_SMTP_ENCRYPTION', 'tls');\n\ndefine('PINNYS_SMTP_AUTH', true);\ndefine('PINNYS_SMTP_USERNAME', 'your@email.com');\ndefine('PINNYS_SMTP_PASSWORD', 'your_app_password');\n\ndefine('PINNYS_SMTP_FROM_EMAIL', 'your@email.com');\ndefine('PINNYS_SMTP_FROM_NAME', 'Your Website');\n<\/code><\/pre>\n\nPINNYS_SMTP_FORCE<\/code> is enabled:<\/p>\n\n\n
wp-config.php<\/code><\/strong><\/li>\nPINNYS_SMTP_FORCE<\/code> is not defined, the plugin behaves normally and settings can be configured from the WordPress dashboard.<\/p>\n\n\ud83d\udee1\ufe0f The \"Zero-Retention\" Security Promise<\/h3>\n\n
1. The Security Risk (Why we don't log)<\/h4>\n\n
\n
2. The Database & Privacy Problem<\/h4>\n\n
\n
wp_options<\/code> or custom tables slows down your site and bloats your backups.<\/li>\n3. The Right Way to Log<\/h4>\n\n
\n
\ud83d\udeab The \u201cAnti-Bloat\u201d Architecture: Why We Rejected OAuth<\/h3>\n\n
\n
\n
\n
\n
\n
\n
\n
\n
\n
How do I set up Pinny's Simple SMTP?<\/h3><\/dt>\n
Does this work with Gmail or Outlook?<\/h3><\/dt>\n
How is my password stored?<\/h3><\/dt>\n
What makes this plugin different from other SMTP plugins?<\/h3><\/dt>\n
1.2.0<\/h4>\n\n
\n
PINNYS_SMTP_FORCE<\/code>) allows SMTP settings to be defined in wp-config.php.<\/li>\n1.1.0<\/h4>\n\n
\n
1.0.0<\/h4>\n\n
\n