• When a new install of WordPress is set up, the user is given the option to create an admin username and password.

    If the user goes with the default username of “admin” they end up exposing themselves to a high frequency of brute force attacks.

    Changing the admin username helps for a while.

    We’ve discovered that using a plugin like http://wordpress.org/plugins/rename-wp-login/ or changing the admin path in .htaccess can help quite a lot as well.

    Would it be worth exploring adding a field in the initial setup of WP to set the administration URL path?

Viewing 1 replies (of 1 total)
  • Moderator Ipstenu (Mika Epstein)


    Lead Plugin Wrangler

    Changing the admin path isn’t likely to happen. It makes supporting WP an absolute nightmare, it’s complicated and tricky to support for plugins, and it doesn’t actually matter :/ People will just hammer away anyway.

Viewing 1 replies (of 1 total)
  • The topic ‘Admin URL’ is closed to new replies.