How to secure wp-admin in Wordpress?

Chris Worner

Well-known member
Registered
Joined
Apr 15, 2016
Messages
612
Points
28
I tried to use a password protect for wp-admin and it works but when I am back to my font page and trying to search my products on my Wordpress, it promoted for a password to continue because search function worked via wp-admin or there is something connected to wp-admin thus I must remove password for this folder to make search system work normally. Are there any ways to secure wp-admin in Wordpress without affecting web system works?
 

KRKavinRaj

New member
Registered
Joined
Aug 5, 2019
Messages
1
Points
1
Are there any ways to secure wp-admin in Wordpress without affecting web system works?
WordFence works best for defending brute-force attacks. Hope my answer will help you to secure your website :)
 

tuxandrew

Well-known member
Registered
Joined
Aug 19, 2012
Messages
126
Points
18

castordor

Well-known member
Registered
Joined
Apr 21, 2018
Messages
153
Points
28
A good solution if you have a static IP address is to add a .htaccess in the wp-admin directory and allow only your own IP address to access it.
 

serveria

Member
Registered
Joined
Dec 7, 2019
Messages
36
Points
8
There are loads of security plugins and literally any of them can help you secure wp-admin. Just browse Wordpress directory and you'll find it.
 

Akshay_M

Member
Registered
Joined
Nov 15, 2019
Messages
44
Points
8
I think these are three of the best ways to do that:
  1. Change the wp-admin link.
  2. Use a strong password and other than "admin" as the username.
  3. Secure your login page.
To change the “wp-admin” at the end of your login URL, you can use a plugin.
A strong password is good but not good enough if you keep it unchanged for years. I change all my passwords once a year.
There are many ways to secure your login page with captcha and other things that can block robots from trying to guess your login details.
Also, I recommend using a plugin for limiting the number of login attempts to less the 3.
 

hostguy

Member
Registered
Joined
Sep 9, 2020
Messages
49
Points
6
You can use wp-hide login plugin to secure your wordpress. Also you can use STRONG and COMPLEX password for wordpress. You can also avoid to use "admin" username.

You can also check this tutorial for Wordpress tutorial.
 

Chris Worner

Well-known member
Registered
Joined
Apr 15, 2016
Messages
612
Points
28
Chris Worner
You can use wp-hide login plugin to secure your wordpress. Also you can use STRONG and COMPLEX password for wordpress. You can also avoid to use "admin" username.
I don't like using a plugin, it may use more resource from system than using codes manually. Is there a way to secure wp-admin by our codes?
 

hostguy

Member
Registered
Joined
Sep 9, 2020
Messages
49
Points
6
Best answer
hostguy
According to me, i don't think there is any particular codes. You have to follow below steps, these steps can help you:
  • Keep wordpress up-to date.
  • Always install from trusted sources
  • don't use unwanted plugins and themes.
  • Do not use Admin user name as its default username which can be easily guessable.
  • Secure "wp-config.php " file with below code in it.
Code:
<files wp-config.php>
order allow,deny
deny from all
</files>
  • Restrict "wp-admin" folder.
Code:
Order Deny,Allow
Deny from all
Allow from <your-ip-range>
  • Try to limit login attempts.
  • Remove Readme file from your account.
 
Recommended Threads

Latest Hosting OffersNew Reviews

Sponsors

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.

Top