Rename Login Page is still working as intended?

  • Resolved Peter K

    (@dragy)


    5 years, 6 months ago

    Hi,

    I have enabled function Rename Login Page with a random login page url, still I see in Simple History plugin few attempts from bots: Failed to login with username “admin” (username does not exist)

    Is this plugin working as we expected (full redirection of login page) or is it possible to login via direct url link to wp-admin.php?

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi,

    They might be targeting the following file xmlrpc.php. This file can be found in the WordPress root directory of your website installation. Enabling one of the following features will help you even further.

    Go to WP Security -> Firewall -> Basic Firewall Rules, find and enable one of the following security option.

    Completely Block Access To XMLRPC:
    Disable Pinback Functionality From XMLRPC:

    Let me know if this helps you.

    Kind regards

    Thread Starter Peter K

    (@dragy)

    Hello

    yes that was the problem. Please mention on “rename login” and “bruteforce cookie protection” pages that these functions are not enough and also the XMLRPC need to be disabled.

    thank you

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Rename Login Page is still working as intended?’ is closed to new replies.