If you have a support question or comment, click the Post New Topic link below.
Current Version: 3.8.4 | Sytist Manual | Sytist Articles 

Lock Down Admin Login Page (3 Ideas)

Please log in or Create an account to post or reply to topics.
David Harris
4 posts
Fri Dec 18, 20
10:42 AM
One of the first security recommendations for WP security is to lock down the admin login page to prevent against brute force attacks. One technique is to make it only accessible from approved IP addresses. This is usually handled by changing the .htacess file Another is to use a buggy plugin but that's just one reason why we here don't use WP!

Solution 1:
Add the ability to configure a list of IPs that are allowed to see the admin login page. All others would see an error or 404.

Side note, (and maybe this is a show stopper) there would need to be some notes on how to fix it through the back end if you found yourself locked out because of an IP address change.

Solution 2:
Provide admin page throttling controls to lock the admin page for some period of time after some number of failed attempts.

Solution 3:
Capta on the admin login page.
Tim - PicturesPro.com
13205 posts
Mon Dec 21, 20
5:28 AM
You can rename the admin folder name to something that would be hard to guess
Tim Grissett, DIA - PicturesPro.com || My Email Address: info@picturespro.com
144 posts
Mon Dec 21, 20
9:27 AM
I would appreciate any efforts that could be made to increase the security of our websites Tim.

Loading more pages
Loading more pages

Sign up for email promotions.

Your information is safe with us and won't be shared.

Thank you for signing up!

©2003 - 2019 Grissett, LLC. All Rights Reserved.

By continuing to browse or by clicking Accept Cookies, you agree to the storing of cookies on your device necessary to provide you with the services available through our website.

    Accept   Privacy & Cookie Policy
Loading More Photos
Scroll To Top
Close Window