Now I know you may be wondering “why do I have to change my WordPress login URL”. Well in this article I intend to teach you how you can keep your WordPress site safe from hackers by changing or hiding your WordPress login URL.
Looking at your site’s page source, one can simply tell if your site is running on WordPress or not. All WordPress sites have a default login URL of /wp-login.php and also have admin as their default administrative username. So it’s quite easy to attack your WordPress login URL using tools like brute force to guess all the possible passwords for the admin username.
So many WordPress sites have been take down like this. I have also being a victim of such attacks except that my administrative username is not admin and my default WordPress login URL has been changed from /wp-login.php.
So in this article I am going to show you how to change the default WordPress login URL from http://www.mywebsite.com/wp-login.php to http://www.mywebsite.com/login using an awesome tool called Better WP Security WordPress plugin.
There are other ways you can also do this like editing your site’s .htaccess file in the root folder of your website by adding the following line:
RewriteRule ^login$ http://www.mywebsite.com/wp-login.php [NC,L]
(Note to replace the mywebsite.com with your own domain name) & you can change the login to anything you want too.
But if this method will be too “techy” for you or you are scared of editing the .htaccess file for fear of messing your site up the then second option I am about to discuss below will be best for you to change your WordPress login URL.
Change WordPress Login URL with Better WP Security:
Note: Always backup your WordPress site before installing any plugins or editing any file.
First install and activate the Better WP Security Plugin on your WordPress site. The plugin works well with WordPress version 3.6 and 3.6.1 (tested by me on these two versions).
After activating the Better WP Security plugin you will notice Security tab has been added to your WordPress dashboard.
Click on the Security tab to reveal its options. Click on the “Create Database Backup” button.
Then click on the “Secure My Site from Basic Attacks” button.
Then Click the “Hide” tab
You may see a warning like this if you are using the default WordPress Permalink structure, so click on “WordPress permalinks” to go to the WordPress Permalink Settings page, then click “Custom Structure” and enter /%postname% then save.
Then go back to Security > Hide backend
Click on “Enable Hide Backend” and enter your desired login, register, and admin slugs or leave them at the plugin’s defaults of “login”, “register”, and “admin” and save changes.
Now your WordPress login URL has changed from http://www.mywebsite.com/wp-login.php to http://www.mywebsite.com/login or whatever you used instead of login.
Note: Ensure to remember anything you entered as the slug for your login URL as you will be logging in to your site always from this new URL.
Now I hope you can easily change your WordPress login URL and keep your WordPress site safe from hackers. If you have any questions to ask, post it on the comment below.Remember to subscribe to my RSS feed.