RSS feeds on private sites need user names and passwords. For security reasons the RSS password is a hashed version of the account password. The last time I checked, the password was given on a page of My Account called "Notifications - online & private RSS & email". It looked like this: 
Although that only mentions account notifications, it was used for private site feeds as well.
Following the extensive Dashboard rewrite, that page no longer exists, and I cannot find the RSS password anywhere else.
Has it disappeared? That would be a significant problem for me.
Rurwin, I just looked at the code and it makes clear that RSS account notifications are deprecated. The most recent one (globally) is from March 2011. It must have been communicated somehow (I will check when).
I will quickly look what can be done to fix this situation.
Michał Frąckowiak @ Wikidot Inc.
Visit my blog at michalf.me
Hi Michal. The problem is not account notifications. Several of the members of my private site use RSS, and the same hashed password is used for that.
So even if the account notifications are deprecated, we still need to know the hashed password.
It is fixed now. The authentication credentials can be found at Account » Settings » Password, i.e. here:
http://www.wikidot.com/account/settings#/account/password
I hope this solves the problem for now, but honestly I would much rather see a hashed feed URL itself for private sites than HTTP authentication. Authentication is not supported well by all RSS readers, while a hashed (complex, hard to guess) URL is a much simpler way.
Anyway, this is something to think about in the future.
Michał Frąckowiak @ Wikidot Inc.
Visit my blog at michalf.me
Thanks Michal. You might also want to consider wish#710 while you are considering alternatives.
Thanks, yes this is one of the problems with HTTP authentications. We are thinking how to solve them for good.
Michał Frąckowiak @ Wikidot Inc.
Visit my blog at michalf.me