delete wp-signup.php and wp-login.php from root folder | WordPress.org

DrMosko
(@drmosko)

8 years, 4 months ago

hello, IM getting a lot of attacks to my site and want to delete those files, will it be an issue?

Viewing 3 replies - 1 through 3 (of 3 total)

zota marius
(@zota-marius)

8 years, 4 months ago
Don`t delete core files of wp. Just add a FilesMatch or Files directive to limit acces to it (your ip) in your htaccess file.

The following would block acces to all scripts ending in “admin.php” :
```
<FilesMatch "admin\.php$">
    Order deny,allow
    Deny from all
    Allow from 10.0.0.0/24
</FilesMatch>
```
The following would ONLY block admin.php :
```
<Files "admin.php">
    Order deny,allow
    Deny from all
    Allow from 10.0.0.0/24
</Files>
```
replace 10.0.0.0/24 with your ip range (from 0.0.0.0 to 1.2.3.4.)
Thread Starter DrMosko
(@drmosko)

8 years, 4 months ago

tx,
how can i block the whole folder wp-admin?

Thread Starter DrMosko
(@drmosko)

8 years, 3 months ago

i created htacces file in wp-admin folder with this code:
order deny,allow
allow from *.*.*.*
deny from all

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘delete wp-signup.php and wp-login.php from root folder’ is closed to new replies.

In: Fixing WordPress
3 replies
2 participants
Last reply from: DrMosko
Last activity: 8 years, 3 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics