Limit WordPress WP-Admin Access To Specific IPs - Keep Brute Force Hackers Out | WP Learning Lab - Best Webhosting

ULTRAFAST, CHEAP, SCALABLE AND RELIABLE! WE STRONGLY RECOMMEND ACCU WEB HOSTING COMPANY

Watch Wordpress WPLearningLab Video: Limit WordPress WP-Admin Access To Specific IPs - Keep Brute Force Hackers Out | WP Learning Lab.
Limit WordPress WP-Admin Access To Specific IPs - Keep Brute Force Hackers Out | WP Learning Lab

# BEGIN Restrict WP-Admin Access To Specific IPs

Order Deny,Allow
Allow from 123.456.789.111
Deny from all

# END Block WP-Admin Access To Specific IPs

In this tutorial I'm going to show you how you can disable wp-admin access to only IP addresses that you specify.

This works great if you have a static IP or a known dynamic IP range that you always access the internet from. This technique is still doable if you travel a lot and access your site from a lot of different locations (and thus different IPs), but it's more of a pain in those cases.

The major benefit of this technique is that if someone does successfully crack your username and password they won't be able to get to your WordPress admin dashboard because their IP won't be allowed.

So the first step is to create an .htaccess file in your WordPress wp-admin folder. Let's do that.

First login into your hosting account cPanel. Then find and click on the File Manager icon and choose the Document Root for the website that you are hardening. This will open the root of the website in another tab.

Then double click on the wp-admin folder to open it.

You can also log into the website root using FTP if you are more comfortable with that.

If you do not see a .htaccess in the wp-admin folder (you probably won't see one) then you can make one by clicking Add New File in the File Manager or right-clicking and choosing Create New File via FTP.

Open the .htaccess file you just made and paste the code from above into it. Then you'll need to find your IP by going to Google and typing in "What is my IP?". Google will display your IP just below the search bar. Copy it and use it to replace the dummy IP in the .htaccess file.

Save the .htaccess file and you're wp-admin is security.

If you know that you have a dynamic IP in a certain range you can use this handy generator to cover all your possible IPs using variables and wildcards (http://www.toshop.com/htaccess-generator.cfm).

If you want to add more IPs then just duplicate the "Allow from IP" line as many times as you need to and add the additional IPs.

That's all there is to prevent wp-admin access. Now you've done your WordPress security for the day. Time to take a break! Or better yet, watch the next video.

I hope this information helps you! If you have any questions leave a comment below or ping me @WPLearningLab on Twitter.

WP Learning Lab Channel: http://www.youtube.com/subscription_center?add_user=wplearninglab

Published: Saturday, August 10, 2019 8:42 AM
Category: Wordpress WPLearningLab

108 Views

Related Videos

Limit Login Attempts Plugin - Use It To Stop Brute Force Attacks | WP Learning Lab

by Best Webhosting Added 4 years ago 93 Views / 0 Likes

Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist Limit Login Attempts Plugin - Use It To Stop Brute Force Attacks | WP Learning Lab The Limit Login Attempts WordPress Plugin is used to help prevent brute force login attacks. You can read more about this WordPress security plugin here: https://wordpress.org/plugins/l
Change WordPress Admin Username Via MySQL - Brute Force Attack Prevention | WP Learning Lab

by Best Webhosting Added 4 years ago 100 Views / 0 Likes

Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist Change WordPress Admin Username Via MySQL - Brute Force Attack Prevention | WP Learning Lab UPDATE wp_users SET user_login = 'Your New Username' WHERE user_login = 'Admin'; In this tutorial I'm going to show you how to change the Admin username on your WordPress accou
How To Limit The Login Attempts On WordPress For Free? Security To Prevent Brute Force

by Best Webhosting Added 1 year ago 26 Views / 0 Likes

In today's video tutorial, we'll learn a simple, fast, and effective way to prevent brute force attacks on your WordPress website by limiting the login attempts for free Why Has Online Security Never Been More Essential https://visualmodo.com/online-security-essential/ How To Add a Security Question To Login At WordPress Dashboard? https://www.youtube.com/watch?v=jQOPMPPBvjQ How To Hide WordPress Login Page From Public? Website Security Guide https://
WordPress Username Hack - Stop Hackers Finding Out Your Username By Brute Force

by Best Webhosting Added 4 years ago 74 Views / 0 Likes

Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist WordPress Username Hack - Stop Hackers Finding Out Your Username By Brute Force Ever since WordPress 3.0 webmasters have had the ability to choose their own usernames when installing WordPress, which helps in reducing the number of successful brute force login attacks
Brute Force Login Attacks Explained - Better WordPress Security | WP Learning Lab

by Best Webhosting Added 4 years ago 96 Views / 0 Likes

Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist Brute Force Login Attacks Explained - Better WordPress Security | WP Learning Lab #1 Biggest Security Threat Facing WordPress this year: http://bit.ly/WordPress-Security2 What is a Brute Force Attack? A hacker gains access to your website by guessing a correct usernam
Popular
Disable WordPress XMLRPC.PHP - Common Brute Force Hacker Exploit | WP Learning Lab

by Best Webhosting Added 4 years ago 103 Views / 0 Likes

Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist Disable WordPress XMLRPC.PHP - Common Brute Force Hacker Exploit | WP Learning Lab # BEGIN Disable XML-RPC.PHP (left pointy bracket)Files xmlrpc.php(right pointy bracket) Order Deny,Allow Deny from all (left pointy bracket)/Files(right pointy bracket) # END Disable XM
Password Protect Your WordPress Login Page - Brute Force Attack Prevention | WP Learning Lab

by Best Webhosting Added 4 years ago 94 Views / 0 Likes

Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist Password Protect Your WordPress Login Page - Brute Force Attack Prevention | WP Learning Lab # Password protect the wp-login.php file ErrorDocument 401 "Unauthorized Access" ErrorDocument 403 "Forbidden" (left pointy bracket)FilesMatch "wp-login.php"(right pointy brac
Force SSL Usage In The WordPress Admin - WordPress Security | WP Learning Lab

by Best Webhosting Added 4 years ago 93 Views / 0 Likes

Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist Force SSL Usage In The WordPress Admin - WordPress Security | WP Learning Lab define('FORCE_SSL_ADMIN', true); In this tutorial I'm going to show you how to secure your WordPress admin by forcing every signed in session to use an SSL certificate (HTTPS). SSL certifica
Prevent Brute Force Attacks In WordPress in 2020

by Best Webhosting Added 4 years ago 88 Views / 0 Likes

Prevent Brute Force Attacks In WordPress in 2020 https://youtu.be/Wt3Amy2PI3s //* Link to backup tutorial: https://youtu.be/566Zw8e84lE Link to Wordfence Tutorial : https://youtu.be/2F460uMt2JE Join our private Facebook group today! https://www.facebook.com/groups/wplearninglab //* The way you prevent brute force attacks in WordPress is by making your site more secure than the average. That means that your site is no longer the "low hanging fruit" tha
Popular
WordPress Login Lockdown Stops Brute Force Attacks On The Login Page

by Best Webhosting Added 4 years ago 117 Views / 0 Likes

Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL WordPress Login Lockdown Stops Brute Force Attacks On The Login Page https://youtu.be/KdN98CtXtiA Plugin in repo: https://en-ca.wordpress.org/plugins/login-lockdown/ Wordpress Login Lockdown is a brute force hacking security plugin. It will help reduce the chances of a brute force attach being successful. It is very similar to Limit Login Attempts Reloaded with one importan
Popular
How to Limit Dashboard Access in WordPress

by Best Webhosting Added 4 years ago 111 Views / 0 Likes

Some sites allow user registration but don't know how to control what the users see. You can limit what controls are available or you can simply remove any dashboard access. In this video, we will show you how to limit dashboard access in WordPress. If you liked this video, then please Like and consider subscribing to our channel for more WordPress videos. Text version of this tutorial: http://www.wpbeginner.com/plugins/how-to-limit-dashboard-access-i
Remove The WordPress Admin Bar - Disable Admin Bar For All Users | WP Learning Lab

by Best Webhosting Added 4 years ago 89 Views / 0 Likes

Grab Your Free 17-Point WordPress Pre-Launch PDF Checklist: http://vid.io/xqRL Download our exclusive 10-Point WP Hardening Checklist: http://bit.ly/10point-wordpress-hardening-checklist Remove The WordPress Admin Bar - Disable Admin Bar For All Users | WP Learning Lab add_filter('show_admin_bar', '__return_false'); In this tutorial you're going to learn how to remove the WordPress admin bar. That is the bar that appears at the top of the website when