跳至主要內容
  • 關於 WordPress
    • 關於 WordPress
    • WordPress.org 台灣繁體中文
    • 線上說明
    • 技術支援
    • 意見反應
  • 登入
  • 註冊
WordPress.org
WordPress.org

Taiwan 正體中文

  • 佈景主題目錄
  • 外掛目錄
  • 最新消息
  • 技術支援
  • 關於我們
  • 團隊
  • 取得 WordPress
取得 WordPress

外掛目錄

  • 我的最愛
  • Beta 版測試
  • 開發者資訊
下載

Block wp-login

由 Webd Ltd 開發
  • 詳細資料
  • 使用者評論
  • 安裝方式
  • 技術支援
  • 開發資訊

外掛說明

Block Access to wp-login.php

This plugin does the following:

  • Locates wp-login.php in your WordPress installation and duplicates it
  • Locates .htaccess and inserts lines to block the default wp-login.php and creates a new secret address to use for legitimate login

When installed your server will return “403 Forbidden“ when attempts are made to access the default wp-login.php file. This has two benefits; it prevents hackers from using brute force methods to hack your website and it reduces the load on the server when such brute force attacks are launched on your site as WordPress isn’t run at all.

安裝方式

Easily prevent access to the default wp-login.php file:

1) Install Block wp-login automatically or by uploading the ZIP file.
2) Activate the plugin through the ‘Plugins’ menu in WordPress.
3) Once activated, visit “Settings – Permalinks” in the admin menu.
4) At the bottom of the page enter a new login address next to “Block wp-login” or click to create a random address.
5) Make sure you make a note of the new address you will need to use to sign in.
6) Save the settings.

Although this plugin now detects when WordPress has been upgraded and re-installs itself, when upgrading WordPress core, you should still make sure you deactivate this plugin first just in case there is an issue.

常見問題集

  • What is /wp-login.php ?
    This is the login page for WordPress; hundreds or thousands of hits to this page is not normal and is almost certainly a brute force attempt to hack the admin password.

使用者評論

Found It!

shirtguy72 2022 年 4 月 27 日
After being abandoned and not updated in 5 years, SF Move Login plugin finally started throwing me errors, started a quest to find another login security plugin written as smart or smarter than that little gem ... FOUND IT! Really love your approach here, Scientifically Whitty! 5-Stars ALL DAY LONG! Thank you and Best Wishes!

Lightweight and superb

TrishaM 2021 年 1 月 12 日
This plugin does exactly what I need it to do, it hides my login page, and doesn't carry extra weight or complexity. I added this after I discovered a ton of (unsuccessful) attempts to hack into my site through the login process (in addition to requiring all my users to update their passwords to something much stronger). I realize where there is a will there is a way and I'll still be at risk if one or more of my *users* gets hacked and their saved login link and credentials get stolen, but I sure sleep better at night now knowing that my site is just a bit safer.

Great protection against hackers

andybull 2018 年 1 月 8 日
Adds a reassuring additional level of security against hackers

A valuable tool

f5nn9s3f8 2017 年 4 月 21 日
A valuable tool to combat security issues facing WordPress users.

Great way to secure login page

wchetwode 2017 年 4 月 17 日
Works a treat, thanks for this clever plugin. Highly recommended !

Great

domic2303 2017 年 4 月 13 日
great, easy and supportive.
閱讀全部 7 則使用者評論

參與者及開發者

以下人員參與了開源軟體〈Block wp-login〉的開發相關工作。

參與者
  • Oliver Campion

Block wp-login 外掛目前已有 1 個本地化語言版本。 感謝全部譯者為這個外掛做出的貢獻。

將〈Block wp-login〉外掛本地化為台灣繁體中文版

對開發相關資訊感興趣?

任何人均可瀏覽程式碼、查看 SVN 存放庫,或透過 RSS 訂閱開發記錄。

變更記錄

1.4.8

  • Preparing for WordPress v6.0

1.4.7

  • Fixed a cookie related bug with Google Chrome preventing login

1.4.6

  • Fixed bugs when .htaccess cannot be opened
  • Removed all PHP short tags

1.4.5

  • Preparing for WordPress v5.8

1.4.4

  • General housekeeping

1.4.3

  • General housekeeping

1.4.2

  • Added an option to send login URL reminders when saving Permalink settings

1.4.1

  • Added random login generator.

1.4.0

  • Premium functionality is now free!

1.3.9

  • Bug fix

1.3.8

  • Removed functionality now dealt with by Deny All Firewall

1.3.7

  • Yet more fixes for compatibility with WordPress 5.3

1.3.6

  • Further fixes for compatibility with WordPress 5.3

1.3.5

  • Fixed a bug that blocked Admin Email Verification in WordPress 5.3

1.3.4

  • Integrated plugin with new Deny All Firewall plugin

1.3.3

  • Plugin now allows password protected posts and pages to work

1.3.2

  • Important security update

1.3.1

  • Important security update

1.3.0

  • Automated upgrade activation facility
  • Bug fixes

1.2.4

  • Bug fix

1.2.3

  • Updating new developer / activation domain
  • Updating tested version

1.2.2

  • Bug fixes.

1.2.1

  • WordPress upgrade email re-worded

1.2.0

  • Plugin now automatically detects when WordPress has been upgraded and re-installs itself.
  • Bug fixed for when wp_mail() isn’t working

1.1.7

  • Bug fixes.

1.1.6

  • Plugin now upgrades automatically when activated if licensed.

1.1.5

  • Plugin is now internationalised ready for translation.
  • Help banner admin notice now appears until plugin has been configured.
  • Added help links on the settings page and added this information to the FAQ.
  • Minor bug fixes.

1.1.4

  • Blocking admin-ajax.php now allows commands when inniated from /wp-admin/.
  • Blank user or site owner emails won’t break saving settings.
  • Duplicate emails are not sent now when site owner and user email addresses are the same.
  • Options to block admin-ajax.php, wp-cron.php, xmlrpc.php and robots.txt are disabled until wp-login.php block is activated.

1.1.3

  • Plugin now emails all Administrators and the email set in General Settings with the new login URL.

1.1.2

  • Added option to block admin-ajax.php, wp-cron.php, xmlrpc.php and robots.txt for the free plugin.

1.1.1

  • Bug fixes.
  • Option to block wp-cron.php, admin-ajax.php and robots.txt for upgraded plugin.

1.1.0

  • Plugin re-written to make use of “Settings – Permalinks” so upgraded plugin can choose custom login slug.
  • Plugin now reverses changes when deactivated.
  • Plugin creates random login slug.

1.0.0

  • First, beta version of the plugin.

中繼資料

  • 最新版本: 1.4.8
  • 最後更新: 1 個月前
  • 啟用安裝數: 700+
  • WordPress 版本需求: 3.5.0 或更新版本
  • 已測試相容的 WordPress 版本: 6.0
  • PHP 版本需求: 5.6 或更新版本
  • 語言:

    English (UK) 及 English (US).

    將這個外掛本地化為你的母語版本

  • 標籤:
    block hackerslogin securitysecuresecuritysecurity plugin
  • 進階檢視

評分

檢視全部
  • 5 星 7
  • 4 星 0
  • 3 星 0
  • 2 星 0
  • 1 星 0
登入以提交評論

參與者

  • Oliver Campion

技術支援

最近 2 個月解決的問題:

總計 1 個問題,已解決 1 個

檢視技術支援論壇

贊助

想要支援這個外掛的發展嗎?

贊助這個外掛

  • 關於我們
  • 最新消息
  • 主機託管
  • 贊助基金會
  • 技術支援
  • 開發者資源
  • 共同參與
  • Learn
  • 展示網站
  • 外掛目錄
  • 佈景主題目錄
  • 區塊版面配置目錄
  • WordCamp
  • WordPress.TV
  • BuddyPress
  • bbPress
  • WordPress.com
  • Matt
  • 隱私權
  • Public Code
WordPress.org
WordPress.org

Taiwan 正體中文

  • 造訪我們的 Facebook 粉絲專頁
  • 造訪我們的 Twitter 帳號
程式碼,如詩