restrict access to wp admin | WordPress.org

a1exus
(@a1exus)

9 years, 9 months ago
How can I restrict access to “/wp-admin” and/or “/w-login.php?

I was thinking of doing it on Apache HTTP Server’s level
```
<LocationMatch "\/wp-(admin\/|login\.php)">
  Order Deny,Allow
  Deny from all
  Allow from none
</LocationMatch>
```
Is there a other or better way of doing that?

Viewing 4 replies - 1 through 4 (of 4 total)

esmi
(@esmi)

9 years, 9 months ago

How do you anticipate logging in if you do that?

Thread Starter a1exus
(@a1exus)

9 years, 9 months ago

I wouldn’t need to access live servers as the grand idea behind this is to do all changes on another server, and after it’s done (and tested) just push out changes to live server(s), meanwhile have restrict access to /wp-admin and /wp-login.php on live server(s) to reduce brute force attacks.

esmi
(@esmi)

9 years, 9 months ago

You could try it and see if it works without any unwanted side effects. It’s probably the most efficient method of blocking access to wp-admin but you’d need to changed login\.php to wp-login\.php.

Thread Starter a1exus
(@a1exus)

9 years, 9 months ago

my regex is already accounts for “wp-login\.php”.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘restrict access to wp admin’ is closed to new replies.

In: Fixing WordPress
4 replies
2 participants
Last reply from: a1exus
Last activity: 9 years, 9 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics