WordPress security is of utmost importance, what’s worse than to have a hacked website. How about putting an end to the intruders who try to access your WordPress website’s login? In this short tutorial, let’s discuss on tightening up our security.
Limit Access to wp-login.php by IP Addresses
First, open the .htaccess file, which will be in your public_html directory. Paste this snippet near the top of the file.
<Files wp-login.php> order deny,allow Deny from all # whitelist King's Road IP address allow from xx.xxx.xx.xx #whitelist Beaufort St IP Address allow from xx.xxx.xx.xx </Files>
Replace the IP with your own. If you have dynamic IPs, then it can be a problem, though. It will break the styling on the wp-login.php but you can live with it, can’t you? Better than a hacked WordPress website by leaps and bounds!