How to protect your login page on WordPress

by PassGuy | WordPress Tutorials

Would you like to protect the WordPress login page?

Un Website generally has many chances to face brute force and malicious login attempts. There are several ways to solve this problem among which the best one is to deploy several strategies. So, in this tutorial, we will provide you the best way to get rid of this problem and hide your WordPress login page.

But before, if you have never installed WordPress discover How to Install a WordPress Blog in 7 Steps et How to search, install and activate a WordPress theme on your blog

Then back to why we are here.

Why hide your login page?

Malicious logins are inevitable especially if you have allowed login for everyone. This won't work for you, because you need to make your login page easy for users to find. However, if your website is not a website member's area and login attempts are common for admin, author, editors and contributor, hiding the login page is the same as the reduction of malicious connection attacks.

You can also use other security measures, such as limit connection attempts, captcha or ReCaptcha, while waiting for strong passwords, unique names and the installation and configuration of a good security plugin.

You can use " the dark Which is a valid security layer as part of the security policy. Another useful method is to make your login page hard to find if you want to reduce the number of malicious login attempts.

Install WordPress in its own directory

You might know how to install WordPress in a subdirectory, which is not difficult. First, if you have an existing WordPress installation, create a full backup of your site and save it where it cannot be deleted. Most tutorials will use a subdirectory name like: 

http://example.com/wordpress ou http://example.com/wp.

Alternatively, you can use something that is not easy to guess, but try to remember. You can choose the name of the directory, unique, but easy to remember which will be difficult for others.

Hide login page url and redirect wp-login.php

When you access wp-login.php, WordPress by default can load the login page. Type wp-admin instead to automatically redirect you to wp-login.php.

Despite taking some steps to avoid standard WordPress behavior, someone can easily access your page. The next step is to block access to wp-login.php, after redirecting to a 404 page. You can redirect to another page rather than your login page and replace it with a custom login URL. So no one could easily guess and easily access the page.

Let me remind you to find something unique that might be easy to remember, but difficult for everyone. Try to use acronyms like

http://example.com/pdc

Where "pdc" means you are connecting (login page), which might be quite easy to remember. You can use a plugin to block access to wp-login.php and configure a custom login url. I will now offer you some plugins that will help you in this direction.

1. WPS Hide Login

protect login page - Wps hide login wordpress plugin

With the help of this plugin, you can use custom url like a standard login URL. After installing and activating the plugin, " / Wp-admin " and " /wp-login.php Will be inaccessible and will be replaced by a custom URL that you have chosen.

Download | Demo | Web hosting

2. WP Hide & Security Enhancer

Wp hide wordpress plugin

This plugin hides the fact that your site uses WordPress. And it also hides the fact that your site is a WordPress site creating custom login URLs while completely disabling default URLs. It can also boast of more than 1000 active installations that are not huge.

Download | Demo | Web hosting

3. Cerber Limit Login Tritem

Cerber wordpress plugin

A well known plugin limiting connection attempts and active on more than 10 sites. It has a 000 out of 4,9 star rating. Additionally, Cerber can also help you limit login attempts to hide the standard login URL in favor of a custom URL.

Download | Demo | Web hosting

4. IThemes Security

Ithemes security pro


This plugin has over 700 active installs and 000 out of 4 stars. IThemes Security is the best and most famous plugin on the repertoire of WordPress themes. You can solve many difficult tasks with the help of this plugin. Its features can create a custom login URL and redirect “wp-login.php” to a 404 page or a page of your choice.

Download | Demo | Web hosting

Other recommended resources

We also invite you to consult the resources below to go further in handling and controlling your website and blog.

Conclusion

Here ! That's all for this tutorial, I hope it will allow you to effectively protect your login page on WordPress.. Feel free to share the tip with your friends on your social networks.

However, you can also consult our resources, if you need more elements to carry out your projects of creation of Internet sites, by consulting our guide on WordPress blog creation.

But, in the meantime, let us know your comments and suggestions in the dedicated section.

...

Submit comment

Your email address will not be published. Required fields are marked with *

This site uses Akismet to reduce unwanted. Learn more about how your comments data is used.