htaccess block wp-admin EXCEPT if came from certain subdomain (for extrsecurity)

  • I came op with an idea to improve my WordPress security.

    The loginpage is always /wp-admin. So that’s easy for hackers. I know you can block al the calls to /wp-admin except from your own IP adress. But that’s often not a solution because you want to be able to upload posts etc. from everewhere, not just home.

    Is it not a solution to block /wp-admin except if the call is made from let say /secretlogin. And you let /secretlogin redirect to wp-admin. Will this work? If yes, how do I manage this with htaccess?

  • The topic ‘htaccess block wp-admin EXCEPT if came from certain subdomain (for extrsecurity)’ is closed to new replies.