"URL Login Requests – Redirects" Issue – Fixed
-
Yep, your update did fix the issue where if a person types in the full URL as “https://www.blognamehere.com/WordPress/wp-login.php”, they were previously redirected to a new login page and bypassed your plugin. The same issue occurred with “https://www.blognamehere.com/WordPress/wp-admin/wp-login.php” and other similar URL requests.
Now that its fixed (thanks muchly), here is something that can add a little spice to the plugin.
In the Word Press folders that do not need the “wp-login.php” file, insert your own “wp-login.php”.
Remember to NOT code it without the standard <html>, <head>, or <body> tags. You can do one of 2 things.
1. Insert only a PHP redirect taking the hacker to any page you want. Such as:<?php
header( ‘Location: https://www.google.com’ ) ;
?>2. Or instead of a PHP redirect, insert only a <p></p> tag with inline CSS styling, as:
<p style=”margin-top: 200px; text-align: center; font-size: 40px;”> This is your login page, have a good day!</p>
Then if the hacker tries to go to “https://www.blognamehere.com/WordPress/wp-admin/wp-login.php”, they get your special login page and voila, you annoyed them.
Plus you can add an HTML comment tag <!–comment something here–> and if they view the source code of your special login page, they read your special comment to them.
Upload the special wp-login to folders as “wp-admin”, “wp-content” and “wp-includes” as these folders do not require a wp-login page. NOTE: -MAKE SURE there is no login file there, if so, view the source code to see if its a WordPress php login file then avoid over writing it.
Make sure you set the access permissions to that file as “555”, removing any write permissions. Your web host normally has the file manager program that allows you to do that.
- The topic ‘"URL Login Requests – Redirects" Issue – Fixed’ is closed to new replies.
