What is it?
The WordPress login URL is out of the box the same across all websites – www.domain.com/wp-login.php or www.domain.com/wp-admin. However, there is an option to designate an alternate URL path for accessing your website.
Why should you care?
The most common way for malicious attackers, or for anyone snooping, to check if your site is using WordPress is to enter the login URL path. Once that page is found, the second step is to try a number of passwords in an attempt to gain access to the site. For this reason we recommend changing the default url to something slightly different, and to add a CAPTCHA to the login screen. This helps prevent simple probing attempts to access your site.
Let us do the work!
We are happy to:
- Update the WP login function to use a custom URL
- Add a second security feature such as CAPTCHA or two factor authentication
- Make any branding or design edits so the login page matches the rest of the site
Cost:
This task takes between 1-2 hours