Simple security improvement?
-
Recently I have been using the Wordfence security plugin (free version). One feature is the option to lock out anyone, who tries to sign in with a non-existing username. I (voluntary) get a mail every time that happens and thats quite often, since I chose to delete the default “admin” account soon after completing my install.
Here is my idea (I tried to search the forum), I suggest, that you force users to pick a random url for the admin. Today all installs use “wp-admin” slug, but if possible, I would like to define my own url for the admin. Can this be done without changing the files and folders? Would it break autoupdates ect.?
I am no cryptographer, but if hackers don’t even know where to try and recover a password or sign in, does that not on a practical level enhance security a bit?
- The topic ‘Simple security improvement?’ is closed to new replies.