I run two Private MediaWiki which do not allow unauthenticated users to create accounts, edit pages, or read pages. I have whitelisted a few special pages including the login page. An example configuration is displayed below.
$wgGroupPermissions['*']['createaccount'] = false;
$wgGroupPermissions['*']['read'] = false;
$wgGroupPermissions['*']['edit'] = false;
$wgWhitelistRead = array (
"Special:Userlogin",
"MediaWiki:Common.css",
"MediaWiki:Common.js",
"MediaWiki:Monobook.css",
"MediaWiki:Monobook.js",
"-"
);
The problem with this is that I want to be able to monitor these private wikis in my RSS client. Therefore, I added another two lines to the configuration to allow my desktop unauthenticated access to the recent changes RSS feed on my wikis. This could be changed to make it easy to punch a hole for multiple clients. The additions are shown below.
if ($_SERVER['REMOTE_ADDR'] == "192.168.1.42")
$wgWhitelistRead[] = "Special:RecentChanges";
Now I can monitor both of my private wikis from my RSS client on my desktop computer. However, all other machines will still require authentication to get to the wiki.