Protecting the site from hackers is an essential need of every site administrator. What are the measures of protection will be applied depends on many factors. But one thing is for sure, keep in mind that the program code of your site known to those who want to abuse them.
Protect Your Website Against Hackers
Some of the measures we have already discussed here, but to remind ourselves:
- Choose a good hosting provider,
- When installing on behalf of the Chief Administrator do not use admin / administrator and the like, but a different name,
- Login directory (/ wp-admin) renamed, for example. u (/ login-user)
Place a strong password (password) after the given rules, - We use the original or verified themes and plug-ins,
- Regularly refresh (apdejtujemo) web platform, theme and add-ons to the latest version,
- Making a regular Back-Up site and always
Regularly inspect, scan, analyze and update all the functional parts of your site.
One of the very best plugin that much reduce the risk of hacking is an “protect-wp-admin”
If you run a WordPress website, you should absolutely use “protect-wp-admin” to secure it against hackers.
Protect WP-Admin fixes a glaring security hole in the WordPress community: the well-known problem of the admin panel URL. Everyone knows where the admin panel, and this includes hackers as well.
Protect WP-Admin helps solve this problem by allowing webmasters to customize their admin panel URL and blocking the default links.
After you setup Protect WP-Admin, webmasters will be able to change the “sitename.com/wp-admin” link into something like “sitename.com/custom-string”. All queries for the classic “/wp-admin/” and “wp-login.php” files will be redirected to the homepage, while access to the WP backend will be allowed only for the custom URL.
The plugin also comes with some access filters, allowing webmasters to restrict guest and registered users access to wp-admin, just in case you want some of your editors to log in the classic way.
NOTE :Back up your database before beginning the activate plugin. It is extremely important to back up your database before beginning the activate plugin. If, for some reason, you find it necessary to restore your database from these backups. Plugin will not work for IIS.
Features
- Define custom wp-admin url(i.e http://yourdomain.com/myadmin)
- Define custom Logo OR change default logo on login page
- Define body background color on login page
- SEO friendly URL for “Register” page (i.e http://yourdomain.com/myadmin/register)
- SEO friendly URL for “Lost Password” page (i.e http://yourdomain.com/myadmin/lostpassword)
- Restrict guest users for access to wp-admin
- Restrict registered non-admin users from wp-admin
- Allow admin access to non-admin users by define comma seprate multiple ids
Go Pro
We have also released an add-on for Protect-WP-Admin which not only demonstrates the flexibility of Protect-WP-Admin, but also adds some important features
- Login Attempt Counter
- An option for define to login page logo URL
- An option for manage login page CSS from admin
- An option for change to username of any user from admin
- An option for define custom redirect url for defalut wp-admin url
- Faster support