iThemes Security (formerly Better WP Security)
[Plugin: Better WP Security] Password protected "wp-admin" or/And HideWP Backend (3 posts)

  1. roxanadanisusca
    Posted 3 years ago #


    If you could setup both security methods what would you choose to use and why:

    1. Setting a second layer of Password protection at webserver level on "wp-admin" folder (with username and password)
    2. Using pluging's BWPS - Hide WordPress Backend?

    Thank you.


  2. I only use number 2 but of course I'm biased.

    Number one tends to be problematic. First, it can block legitimate users thanks to certain plugins that access wp-admin. Second, assuming you're only using HTTP BASIC Auth, it really isn't all that secure as you only have a limited group of users, the credentials may not be encrypted, their is no session so credentials have to be retransmitted on every request, etc.

  3. roxanadanisusca
    Posted 3 years ago #

    Thank you for your response. I'll keep that in mind. All the best!

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic