Perhaps a broader more applicable security approach than the direct private exhibition reference technique

http://photography-on-the.net/gallery/list.php?exhibition=99&pass=luckyguess

would be a user login & password prompt when opening up EE (optional)

With this technique, only exhibitions coded for a particular user & password - and 'public' - would show up.

Yet EE front page data - text, exhibit list & news would be seen. Though perhaps coding text & news as public & user dependant might be considered.

With UC/PW, many EE options could become user dependant.

Suggestion - further to a method of user code/password coding exhibitions:

Perhaps, for the administrator, to get ALL exhibitions, enter :-

http://photography-on-the.net/gallery/list.php?exhibition=ALL&user=SUPERUSER&pass=SUPERPASSWORD

This would require input/edit of a 'Super User & Password'

and, for an individual user to get ALL of HIS/HER exhibitions, enter :-

http://photography-on-the.net/gallery/list.php?exhibition=ALL&user=USERCODE&pass=USERPASSWORD