Using WPS Hide Login

  • Resolved neptun

    (@neptun)


    3 years, 7 months ago

    WPS Hige Login

    Robots attacked my site – https://neptunet.net – login page. On the advice of my online hotel, I installed your extension. However, they couldn’t say anything about how it works, so I ask you.

    How could you experiment with how its adjustments work? Now when I log out and log back in with my username, there will be a similar login page as before. It gives you access to the site with the same password as before. I figured I should use the URL that is installed in the plugin. When is it needed then?

    The redirection setting is: Forbidden 403

    I am grateful for the advice.

    Seppo Partanen
    [email protected]
    https://neptunet.net

    The page I need help with: [log in to see the link]

Viewing 4 replies - 1 through 4 (of 4 total)

  • It appears that you have .htaccess protection enabled on your old wp-login.php page which is not the same as WordPress login.

    This plugin changes the your-site.tld/wp-login.php link to something unknown to attackers. So any robots/scripts automatically trying to log into the default WP login page are rejected.

    The login page can only be accessed by those you give the new login link to.

    On your site, you had two levels of login. .htaccess which is done at the server level and can be set via your hosts cPanel (or similar) and you had the normal WordPress login.

    Thread Starter neptun

    (@neptun)

    shinerweb; Thanks for the answer. The process is as follows: I tried two different WP add-ons that had to remove the login page. However, they did not work. The first did nothing (even updating it a long time ago), and the second did not delete the page. So I asked the web host of my site to delete it using an .htaccess file. This was done and now the login page no longer appears under the thing is okay. I’m sorry that WP has add-ons that don’t work with the latest WP installations. And the fact that they have no support at all to ask for anything. I hope for tighter controls and pruning of add-ons

    @neptun WP Hide Login is a simple plugin and I use it on well over 100+ WP sites without any issues. The issue you describe sounds like a caching issue whereby the old login page was still present in either a local or server cache (or combination of both). (And I note you use WP Rocket on the site, if you are using Sun Comet’s WordPress hosting, they might have additional server-side caching enabled).

    I can’t comment on the support as I’ve never had case to use it however most plugin authors do so on a volunteer (unpaid) basis so support can vary from plugin to plugin.
    As a fellow user of the plugin, if I had seen your message earlier, I might have been able to help ??
    I’m surprised Support at Sun Comet didn’t pick up the caching issue.

    Hope all goes with the site from here on.

    Chris

    • This reply was modified 3 years, 6 months ago by shinerweb.
    Thread Starter neptun

    (@neptun)

    Hello Cris,

    You are definitely right. Too bad you’re not lucky enough to help. However, this was the case. When the site was subjected to severe and constant bombardment from Asia, I had no choice but to turn to a web host. Now it’s not worth changing it anymore, because it’s okay. It cost 20 E, which of course is not returned by the web host.

    It should be mentioned that after trying the hide login I tried to change the .htaccess file myself. There is also a WP add-on for this change or was it a utility that should make it easy. Be that as it may, I also did not get the change done.-:) Later, when I look at the new .htaccess file made by the web host, it is quite different from what that add-on was doing as instructed.

    Everything would be easy if there was knowledge and experience of the problem at hand. Well, that’s the experience here all the time. Thanks for the info and good luck!

    Seppo

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Using WPS Hide Login’ is closed to new replies.