Menu
I'm running some Wordpress websites and I have googled this several times without being able to find an concrete answer to my problem.
I have my sites protected with a login-lock plugin which locks an IP for a certain time if that IP tries to login with wrong credentials repeatedly.
So my problem is that I keep receiving alerts and alerts of IPs trying to login to my backend. I know I could turn those notifications off, but I would like to solve this correctly.
So I have seen some good WP sites where you can type the /wp-admin and nothing is shown, you get a 404 or you are redirected to homepage. I have also read here about a plugin called stealth login but plugin is no longer listed on wordpress site.
I have also saw some plugins that work with IPs and restrict the folder to certain IP but on my ISP I have a dynamic IP so if I have a new one I'd not be able to see the wp-admin folder.
I'd like to know if there is a standardized or a good way to fix that and hide the wp-admin directory to public.
676
-
order deny,allow
allow from a.b.c.d # This is your static IP
deny from all
-
AuthUserFile /etc/httpd/htpasswd
AuthType Basic
AuthName "restricted"
Order Deny,Allow
Deny from all
Require valid-user
Satisfy any
Or you can protect it with a .htaccess file http://www.askapache.com/wordpress/htaccess-password-protect.html
To answer you question as a apache URL layout configuration via mod_rewrite (the apache module that handles URL rewriting), this could be helpful:
RewriteRule ^admin/(.*)$ /wp-admin/$1 [QSA,L]
81
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
