Home » Blog » WordPress login form security

WordPress login form security

Proper security of the login form should be an essential element in ensuring the security of WordPress. Since the address of the administration is publicly known, almost every website is attack by robots who try to break the password into the system using brute force.

Changing the URL for logging into the administration
The publicly known wp-admin address for logging into the administration can be easily chang using the WPS Hide Login plugin.

 

After installing the plugin

we go to Settings -> General , where we set a new login address at the bottom of the page.

 

In my case, I chose the address ” secret-address “, so from now on I will

This simple step will eliminate most login form attacks. Better write down the new login page somewhere or save it to your browser’s favorites so you never forget it.

Protection against brute force attacks
Another step for better WordPress security is to protect the login form against brute force attacks. These consist in the fact that robots automatically try to log in using usa phone number data commonly us passwords.

To protect against this type of attack, the proven plugin Limit Logins Reload is suitable :

phone number data

You only ne to activate the plugin

after installation, and this will make your site a bit more secure. By default, the plugin sends information emails about unsuccessful login topic cluster topic clusters attempts. If this bothers you, you can deactivate these notifications in the plugin settings, which can be found in the Settings -> Limit Login Attempts section.

Improv loading of fonts in WordPress
After optimizing images, styles and scripts, it is usually the turn of fonts. As already mention, any additional font will slow down the loading of the site. That’s why a maximum bw lists of 2 fonts are usually us, because it can be noticeable with more.