Best Web Hosting

Limit WordPress WP-Admin Access To Specific IPs - Keep Brute Force Hackers Out | WP Learning Lab - Best Webhosting

Thanks! Share it with your friends!

URL

You disliked this video. Thanks for the feedback!

Sorry, only registred users can create playlists.
ULTRAFAST, CHEAP, SCALABLE AND RELIABLE! WE STRONGLY RECOMMEND ACCU WEB HOSTING COMPANY
Limit WordPress WP-Admin Access To Specific IPs - Keep Brute Force Hackers Out | WP Learning Lab

Watch Wordpress WPLearningLab Video: Limit WordPress WP-Admin Access To Specific IPs - Keep Brute Force Hackers Out | WP Learning Lab.
Limit WordPress WP-Admin Access To Specific IPs - Keep Brute Force Hackers Out | WP Learning Lab

# BEGIN Restrict WP-Admin Access To Specific IPs

Order Deny,Allow
Allow from 123.456.789.111
Deny from all

# END Block WP-Admin Access To Specific IPs

In this tutorial I'm going to show you how you can disable wp-admin access to only IP addresses that you specify.

This works great if you have a static IP or a known dynamic IP range that you always access the internet from. This technique is still doable if you travel a lot and access your site from a lot of different locations (and thus different IPs), but it's more of a pain in those cases.

The major benefit of this technique is that if someone does successfully crack your username and password they won't be able to get to your WordPress admin dashboard because their IP won't be allowed.

So the first step is to create an .htaccess file in your WordPress wp-admin folder. Let's do that.

First login into your hosting account cPanel. Then find and click on the File Manager icon and choose the Document Root for the website that you are hardening. This will open the root of the website in another tab.

Then double click on the wp-admin folder to open it.

You can also log into the website root using FTP if you are more comfortable with that.

If you do not see a .htaccess in the wp-admin folder (you probably won't see one) then you can make one by clicking Add New File in the File Manager or right-clicking and choosing Create New File via FTP.

Open the .htaccess file you just made and paste the code from above into it. Then you'll need to find your IP by going to Google and typing in "What is my IP?". Google will display your IP just below the search bar. Copy it and use it to replace the dummy IP in the .htaccess file.

Save the .htaccess file and you're wp-admin is security.

If you know that you have a dynamic IP in a certain range you can use this handy generator to cover all your possible IPs using variables and wildcards (http://www.toshop.com/htaccess-generator.cfm).

If you want to add more IPs then just duplicate the "Allow from IP" line as many times as you need to and add the additional IPs.

That's all there is to prevent wp-admin access. Now you've done your WordPress security for the day. Time to take a break! Or better yet, watch the next video.

I hope this information helps you! If you have any questions leave a comment below or ping me @WPLearningLab on Twitter.

WP Learning Lab Channel: http://www.youtube.com/subscription_center?add_user=wplearninglab

Published:
Category: Wordpress WPLearningLab
87 Views

Related Videos

RECOMMENDED WEB HOSTING

FASTCOMET

Fastcomet

HOSTGATOR

HOSTGATOR

BLUEHOST

BLUEHOST

SITEGROUND

SITEGROUND

A2 HOSTING

A2 HOSTING

HOSTINGER

HOSTINGER

DREAMHOST

DREAMHOST

ACCU WEBHOSTING

ACCU WEBHOSTING

MILESWEB

MILESWEB

HOSTPAPA

HOSTPAPA
RSS