GoFuckYourself.com - Adult Webmaster Forum

GoFuckYourself.com - Adult Webmaster Forum (https://gfy.com/index.php)
-   Fucking Around & Business Discussion (https://gfy.com/forumdisplay.php?f=26)
-   -   [Blog Tip] Securing your Wordpress admin (https://gfy.com/showthread.php?t=767552)

Jace 09-10-2007 03:14 PM
[Blog Tip] Securing your Wordpress admin
 
http://www.justjace.com/2007/09/10/s...rdpress-admin/

The best way I have found is to secure it by limiting to your ip only. This is a simple solution and you just add this

order deny,allow
allow from 123.45.67.123 # This is your IP Address
deny from all

to your wp-admin .htaccess file

What this does is tell your server to not let ANY other ip addresses but yours into the wp-admin folder. This requires an update every once and a while unless you have a static ip, but worth the extra effort.

dissipate 09-10-2007 03:15 PM
pain in the ass if you have a cable modem that you have to reset every few days ;-)

tenderobject 09-10-2007 03:19 PM
wow nice jace. thanks for shaaring!

Jace 09-10-2007 03:19 PM
Quote:
Originally Posted by dissipate (Post 13068566)
pain in the ass if you have a cable modem that you have to reset every few days ;-)
yeah, that would be a pain in the ass

in that case you can just set up a htaccess username/password similar to that of a paysite

st0ned 09-10-2007 03:21 PM
Nice tip, Thanks! :thumbsup

pornguy 09-10-2007 03:25 PM
good tip.

tranza 09-10-2007 03:32 PM
Nice solution indeed....

Profits of Doom 09-10-2007 03:38 PM
I was searching through blog resource sites today and I found this, http://www.blogworldexpo.com/, a blogging convention in Vegas November 8-9. I guess that shows you how far blogging has come...

Jace 09-10-2007 03:50 PM
Quote:
Originally Posted by Profits of Doom (Post 13068672)
I was searching through blog resource sites today and I found this, http://www.blogworldexpo.com/, a blogging convention in Vegas November 8-9. I guess that shows you how far blogging has come...
woah, nice

might be worth it to check it out for sure

Tanker 09-10-2007 03:55 PM
thanks for the tip and the convention

Sosa 09-10-2007 04:03 PM
pain in the ass if you travel and forget about it lol! but nice tip

TeenCat 09-10-2007 04:05 PM
good idea, thank you, but what about to rename the folder to "-my-h1dd3n-admin-" or similar? i think it will be working well as in the folder wp-admin and nobody will find it ;) but its another newbies :2 cents: thanks for sharing your useful tips, respect!

NinjaSteve 09-10-2007 04:11 PM
Quote:
Originally Posted by Profits of Doom (Post 13068672)
I was searching through blog resource sites today and I found this, http://www.blogworldexpo.com/, a blogging convention in Vegas November 8-9. I guess that shows you how far blogging has come...
Whoa that's crazy!

candyflip 09-10-2007 04:52 PM
Quote:
Originally Posted by Sosa (Post 13068818)
pain in the ass if you travel and forget about it lol! but nice tip
Remote Desktop :winkwink:

Jace 09-10-2007 04:54 PM
Quote:
Originally Posted by TeenCat (Post 13068835)
good idea, thank you, but what about to rename the folder to "-my-h1dd3n-admin-" or similar? i think it will be working well as in the folder wp-admin and nobody will find it ;) but its another newbies :2 cents: thanks for sharing your useful tips, respect!
you can do that, but you have to let wordpress know you are doing that

found this htaccess hack to accomplish just that

Code:
RewriteEngine On
RewriteBase /
##### ABOVE THIS POINT IS ALREADY INSERTED BY WORD PRESS
##### Michi?s code is BELOW #####
RewriteCond %{REQUEST_URI} wp-admin/
RewriteCond %{QUERY_STRING} !YOURSECRETWORDHERE
RewriteRule .*\.php [F,L]
RewriteCond %{QUERY_STRING} !YOURSECRETWORDHERE
RewriteRule ^ADMINFOLDER/(.*) wp-admin/$1?%{QUERY_STRING}&YOURSECRETWORDHERE [L]
##### Michi?s code is ABOVE #####
##### BELOW THIS POINT IS ALREADY INSERTED BY WORD PRESS
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]

OzMan 09-10-2007 05:06 PM
Quote:
Originally Posted by Profits of Doom (Post 13068672)
I was searching through blog resource sites today and I found this, http://www.blogworldexpo.com/, a blogging convention in Vegas November 8-9. I guess that shows you how far blogging has come...
aah cool Vanessa Fox will be there. I need to talk to her about monetizing her blog more effectively :1orglaugh

Bro Media - BANNED FOR LIFE 09-10-2007 05:17 PM
good tips jace!

TeenCat 09-11-2007 02:23 AM
Quote:
Originally Posted by Jace (Post 13068994)
you can do that, but you have to let wordpress know you are doing that

found this htaccess hack to accomplish just that

/cut
thank you for explanation, now that code is quite complicated for me ... ;) keep up the great work, respect!

paymeback 09-11-2007 02:47 AM
Nice tip Jace!

teenfeetcash 09-11-2007 02:54 AM
Cool tip, never thought about using .htaccess for the admin folder - can I just secure the folder without if affecting the operation of the blog?


All times are GMT -7. The time now is 10:01 AM.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2026, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123