WordPress.org

Ready to get started?Download WordPress

Forums

iThemes Security (formerly Better WP Security)
[Plugin: Better WP Security] Password protected "wp-admin" or/And HideWP Backend (3 posts)

  1. roxanadanisusca
    Member
    Posted 1 year ago #

    Hi!

    If you could setup both security methods what would you choose to use and why:

    1. Setting a second layer of Password protection at webserver level on "wp-admin" folder (with username and password)
    and/or
    2. Using pluging's BWPS - Hide WordPress Backend?

    Thank you.

    http://wordpress.org/extend/plugins/better-wp-security/

  2. I only use number 2 but of course I'm biased.

    Number one tends to be problematic. First, it can block legitimate users thanks to certain plugins that access wp-admin. Second, assuming you're only using HTTP BASIC Auth, it really isn't all that secure as you only have a limited group of users, the credentials may not be encrypted, their is no session so credentials have to be retransmitted on every request, etc.

  3. roxanadanisusca
    Member
    Posted 1 year ago #

    Thank you for your response. I'll keep that in mind. All the best!

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic