Quote:
Originally Posted by lezinterracial
I rename the wp-login.php on my wordpress sites and rename it back when I need to login. I still see bots trying to access it. Do you protect the wp-login.php file?
Thanks for the notice. I am keeping an eye on my wpxtube site.
Also think about switching to hostgator. Nobody will be able to access your sites.
|
its not always the wp-login.php used to gain access to your wp.
there are mo re than that, like
rfi ,rce vulnerability
*make sure wp + plugins + themes are up to date
*and make sure to get them from repuatble sources /from anthers .
harden the os, and you can just chmod the wp-login file with 000 no need to rename eveytime.