Modify WordPress Background login address, improve security

Using the Stealth Login Page plugin

The plugin settings are very simple, set an illegal access to the background address/wp-admin or/wp-login.php, redirect to the specified URL, and then set the custom login address link parameters, see:

After you save the settings, you can only access the login form through that custom login address, and all other background addresses are redirected to the redirected address you set. The plug-in a relatively large feature is the support of multi-site network, specific settings can view the plugin documentation (plug-in comes with a document page)

Search Stealth Login page in the background plugin installation interface to install online, or download Stealth login page

Using the Protected Wp-login plugin

Protected Wp-login is a relatively simple, but also practical WordPress plugin, by adding validation parameters after the login address to improve security, together to understand the next.

1. Search Protected wp-login in the background plugin installation screen to install Now, or download Protected wp-login

2. Enable Protected Wp-login, in the background > Settings >protected wp-login, enter the Setup interface:

The plugin has three settings options:

• Enable protection (protection enabled)
• Your Secure Key (your security key-if it is not the address that contains the security key, even if your username and password are correct, no way to log in)
• Enable stealth mode (stealth-enabled-does not display a login form if it is not an address that contains a security key)

Tick enable protection, enter the security key (input fuck_you in the demo), save the changes, and you will get a login address as shown in.

I don't know what we're going to do, the address that was generated when we were trying to do this was:

http://demo.wpdaxue.info/wp-login.php/wp-login.php? sk=fuck_you

After testing, the above address can log in normally, the following address can also

http://demo.wpdaxue.info/wp-login.php? sk=fuck_you

If it is a different address, even if your user name and password is correct, there is no way to login! If Incognito mode is turned on, no other address can see the login form except for the address above.

Initiative tips: Please remember to add the generated login address to the browser's favorites, if you forget to log in, you can log in to the plug-in directory via FTP, rename or delete the plugin can be restored.

Using Code

If you don't like plugins, you can add the following code to the functions.php file for the current topic:

2. Protect Background Login

4. Add_action(' login_enqueue_scripts ',' login_protection ')      

6. function Login_protection(){    

8.     If($_get[' word ' press')header(' location:http://www.wpdaxue.com/' )

10. }

In this way, the only address of the background login is http://yoursite/wp-login.php?word=press, if not this address, will automatically jump to http://www.wpdaxue.com/, do not believe you try!

You can modify the three parameters of Word, press and http://www.wpdaxue.com/on line 4th.

Initiative tips: Please remember to add a custom login address to the browser's favorites, if you forget, no way to log in, please download the theme by FTP functions.php file view.

Modify WordPress Background login address, improve security