WordPress is one of the most used Blogging Platform and but its Login Page ( e.g domain.com/wp-admin OR domain.com/blog/wp-admin) is not Attractive as of Others Like Blogger and TypePad. Its Login Page is too Pretty that Hackers Or Attackers can attempt with many Passwords until unless they get the Password. So , its nessacary to make your Login Area strong and HackProof.
Following are the Hacks which you can Apply on your Blog to make it Hackproof.
Limiting Access of Admin Login Page
You can limit the Access of Admin Login Page by Applying the following code in your .htaccess file in WordPress Directory. This code allows to open you Login Page only certain IP Addresses that you choose.You have to paste this code to your .htaccess file to enable this Feature.
AuthUserFile /dev/null AuthGroupFile /dev/null AuthName “WordPress Admin Access Control” AuthType Basic order deny,allow deny from all # allow my own IP address allow from xx.xx.xx.xxx # allow another IP address allow from xx.xx.xx.xxx
You have to Edit this code By Inserting the IP Addresses .
Changing OR Deleting Default Username “Admin”
When you set up your new WordPress blog , you should have noticed that the Every WordPress installaion comes with a default username i.e Admin. And most of the users does not change that username.This is the weakest point for Bloggers.To change or remove that username , open “Add New” option under “Users” heading and add new author as Administrator and then delete the Admin from “Authors & Users.”
Remove Error Display At Wrong Login Atempt
After a Wrong Attempt, the re-login page does not appears.It will display a message whether user name is correct or password and the other one is not correct.All you have to do is Adding Below Code to Your Theme’s functions.php.
<?php add_filter('login_errors',create_function('$a', "return null;")); ?>
Did you like the post ? Any questions, queries, views ? Comment them below.
About SmashinGeek
