Password Protect Your WordPress Login Page - Brute Force Attack Prevention | WP Learning Lab - Best Webhosting

Thanks! Share it with your friends!

URL

You disliked this video. Thanks for the feedback!

Sorry, only registred users can create playlists.

ULTRAFAST, CHEAP, SCALABLE AND RELIABLE! WE STRONGLY RECOMMEND ACCU WEB HOSTING COMPANY

Password Protect Your WordPress Login Page - Brute Force Attack Prevention | WP Learning Lab

Watch Wordpress WPLearningLab Video: Password Protect Your WordPress Login Page - Brute Force Attack Prevention | WP Learning Lab.
Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL
Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist
Password Protect Your WordPress Login Page - Brute Force Attack Prevention | WP Learning Lab

# Password protect the wp-login.php file

ErrorDocument 401 "Unauthorized Access"
ErrorDocument 403 "Forbidden"
(left pointy bracket)FilesMatch "wp-login.php"(right pointy bracket)
AuthName "Authorized Only"
AuthType Basic
AuthUserFile /home/username/.wpadmin
require valid-user
(left pointy bracket)/FilesMatch(right pointy bracket)

# Password protect the wp-login.php file

You doesn't allow the pointy brackets (Shift period and Shift comma) so make sure they match what you see in the video.

http://www.htaccesstools.com/htpasswd-generator/

In this tutorial I'm going to show you how to password protection your WordPress login page. Yes, you read that correctly, you'll have to log in before you can log in.

Why is this a good idea?

When Brute Force Hackers try to guess your username and password they do so in one of two places: the login page or the XMLRPC.php file (learn to protect XMLRPC.php here: https://youtu.be/WiIaz-Ik3tE)

If the hacker can't access the login page then they can't even being to guess your username and password. Of course you want to protect the login.php file with a username and password that doesn't also have an account on your website.

So let's get started.

First things first, we have to create a .wpadmin file in the user folder of your hosting account (this is a level above your website folders).

Then we go to this website, http://www.htaccesstools.com/htpasswd-generator/, to generate the code for the .wpadmin file. Copy and paste the code that you generate into the file and save it.

Following that we put the code from the very top of this description into the .htaccess found in the root of the website folder. Save that file when you're done.

Now when anyone tries to access to the default WordPress login page (wp-login.php) they will be required to enter a username and password first.

After they've successfully entered those details they will be taken to the login page where the can log into the WordPress site.

This is great for WordPress security, hacker proofing and reducing the likelihood of a successful brute force attack.

I hope this information helps you! If you have any questions leave a comment below or ping me @WPLearningLab on Twitter.

--------------

If you want more excellent WordPress information check out our website where we post WordPress tutorials daily.

http://wplearninglab.com/

Connect with us:

WP Learning Lab Channel: http://www.youtube.com/subscription_center?add_user=wplearninglab

Facebook: https://www.facebook.com/wplearninglab

Twitter: https://twitter.com/WPLearningLab

Google Plus: http://google.com/+Wplearninglab

Pinterest: http://www.pinterest.com/wplearninglab/

Published:
Category: Wordpress WPLearningLab
91 Views

Related Videos

  • Change WordPress Admin Username Via MySQL - Brute Force Attack Prevention | WP Learning Lab

    Change WordPress Admin Username Via MySQL - Brute Force Attack Prevention | WP Learning Lab

    by Best Webhosting Added 97 Views / 0 Likes

    Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist Change WordPress Admin Username Via MySQL - Brute Force Attack Prevention | WP Learning Lab UPDATE wp_users SET user_login = 'Your New Username' WHERE user_login = 'Admin'; In this tutorial I'm going to show you how to change the Admin username on your WordPress accou

  • Brute Force Login Attacks Explained - Better WordPress Security | WP Learning Lab

    Brute Force Login Attacks Explained - Better WordPress Security | WP Learning Lab

    by Best Webhosting Added 95 Views / 0 Likes

    Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist Brute Force Login Attacks Explained - Better WordPress Security | WP Learning Lab #1 Biggest Security Threat Facing WordPress this year: http://bit.ly/WordPress-Security2 What is a Brute Force Attack? A hacker gains access to your website by guessing a correct usernam

  • Popular WordPress Login Lockdown Stops Brute Force Attacks On The Login Page

    WordPress Login Lockdown Stops Brute Force Attacks On The Login Page

    by Best Webhosting Added 116 Views / 0 Likes

    Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL WordPress Login Lockdown Stops Brute Force Attacks On The Login Page https://youtu.be/KdN98CtXtiA Plugin in repo: https://en-ca.wordpress.org/plugins/login-lockdown/ Wordpress Login Lockdown is a brute force hacking security plugin. It will help reduce the chances of a brute force attach being successful. It is very similar to Limit Login Attempts Reloaded with one importan

  • Limit Login Attempts Plugin - Use It To Stop Brute Force Attacks | WP Learning Lab

    Limit Login Attempts Plugin - Use It To Stop Brute Force Attacks | WP Learning Lab

    by Best Webhosting Added 92 Views / 0 Likes

    Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist Limit Login Attempts Plugin - Use It To Stop Brute Force Attacks | WP Learning Lab The Limit Login Attempts WordPress Plugin is used to help prevent brute force login attacks. You can read more about this WordPress security plugin here: https://wordpress.org/plugins/l

  • Popular WordPress Password Protect Page or Post | WP Learning Lab

    WordPress Password Protect Page or Post | WP Learning Lab

    by Best Webhosting Added 108 Views / 0 Likes

    Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist WordPress Password Protect Page or Post | WP Learning Lab In this tutorial you will learn how to password protect WordPress pages using the password protection built right into WordPress. This technique is only effective for protecting a few pages on your website, it

  • How To Move WordPress Login Page For WordPress Security & Hack Prevention | WP Learning Lab

    How To Move WordPress Login Page For WordPress Security & Hack Prevention | WP Learning Lab

    by Best Webhosting Added 79 Views / 0 Likes

    Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist How To Move WordPress Login Page For WordPress Security & Hack Prevention | WP Learning Lab In this tutorial I'm going to show you how to use the Move Login plugin to move the default WordPress login page. This will help reduce the likelihood of a successful brute for

  • How To Limit The Login Attempts On WordPress For Free? Security To  Prevent Brute Force

    How To Limit The Login Attempts On WordPress For Free? Security To Prevent Brute Force

    by Best Webhosting Added 25 Views / 0 Likes

    In today's video tutorial, we'll learn a simple, fast, and effective way to prevent brute force attacks on your WordPress website by limiting the login attempts for free Why Has Online Security Never Been More Essential https://visualmodo.com/online-security-essential/ How To Add a Security Question To Login At WordPress Dashboard? https://www.youtube.com/watch?v=jQOPMPPBvjQ How To Hide WordPress Login Page From Public? Website Security Guide https://

  • Popular Disable WordPress XMLRPC.PHP - Common Brute Force Hacker Exploit | WP Learning Lab

    Disable WordPress XMLRPC.PHP - Common Brute Force Hacker Exploit | WP Learning Lab

    by Best Webhosting Added 102 Views / 0 Likes

    Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist Disable WordPress XMLRPC.PHP - Common Brute Force Hacker Exploit | WP Learning Lab # BEGIN Disable XML-RPC.PHP (left pointy bracket)Files xmlrpc.php(right pointy bracket) Order Deny,Allow Deny from all (left pointy bracket)/Files(right pointy bracket) # END Disable XM

  • Popular Limit WordPress WP-Admin Access To Specific IPs - Keep Brute Force Hackers Out | WP Learning Lab

    Limit WordPress WP-Admin Access To Specific IPs - Keep Brute Force Hackers Out | WP Learning Lab

    by Best Webhosting Added 107 Views / 0 Likes

    Limit WordPress WP-Admin Access To Specific IPs - Keep Brute Force Hackers Out | WP Learning Lab # BEGIN Restrict WP-Admin Access To Specific IPs Order Deny,Allow Allow from 123.456.789.111 Deny from all # END Block WP-Admin Access To Specific IPs In this tutorial I'm going to show you how you can disable wp-admin access to only IP addresses that you specify. This works great if you have a static IP or a known dynamic IP range that you always access t

  • WordPress Admin Login  Hide & Protect Your Dashboard Login Page

    WordPress Admin Login Hide & Protect Your Dashboard Login Page

    by Best Webhosting Added 100 Views / 0 Likes

    To access your WordPress admin login page, type in /wp-admin after your domain name in your browser, then hit enter. This way, you can access the login page of almost any WordPress website out there, unless the admin decides to change it, which is something you should do right now. To do that, you need to replace "wp-admin" with something like "dashboard", for example. Never set links that include the word "user" or your username. Pick something like

  • How to Password Protect a Page or Post in WordPress

    How to Password Protect a Page or Post in WordPress

    by Best Webhosting Added 92 Views / 0 Likes

    Do you want to password protect one or more pages in WordPress? This could be for private pages for specific clients or for getting started if you want to keep your site content a secret until launch. In this video, we will show you how to password protect pages in WordPress. This video brought to you by SeedProd take a look at their site here: ================================= https://www.seedprod.com/ ================================= For a discount

  • Prevent Brute Force Attacks In WordPress in 2020

    Prevent Brute Force Attacks In WordPress in 2020

    by Best Webhosting Added 88 Views / 0 Likes

    Prevent Brute Force Attacks In WordPress in 2020 https://youtu.be/Wt3Amy2PI3s //* Link to backup tutorial: https://youtu.be/566Zw8e84lE Link to Wordfence Tutorial : https://youtu.be/2F460uMt2JE Join our private Facebook group today! https://www.facebook.com/groups/wplearninglab //* The way you prevent brute force attacks in WordPress is by making your site more secure than the average. That means that your site is no longer the "low hanging fruit" tha

RECOMMENDED WEB HOSTING

FASTCOMET

Fastcomet

HOSTGATOR

HOSTGATOR

BLUEHOST

BLUEHOST

SITEGROUND

SITEGROUND

A2 HOSTING

A2 HOSTING

HOSTINGER

HOSTINGER

DREAMHOST

DREAMHOST

ACCU WEBHOSTING

ACCU WEBHOSTING

MILESWEB

MILESWEB

HOSTPAPA

HOSTPAPA


RSS