BradBlogging
Skip to content
  • About
  • Contact
  • Advertise
  • What Is R.S.S and Why Subscribe To Us?
  • Free Premium WordPress Themes
Tweet
Share
« A Guest Blogger on Guest Blogging
Create A “Sidenotes” Section On Your Sidebar »

Weekend WordPress Security Tip: Restrict Your Wp-Admin

Although this security issue may be fixed in newer versions of WordPress, your truly screwed if your password gets cracked by a hacker. Since WordPress only requires one to get all the administrative privileges to your blog, it would be best to limit the /wp-admin/ folder to just yourself (by your IP address, see below). How you might ask? With .htaccess files.

The Fix:

*Note* – If you have a dynamic IP (meaning that your IP changes from time to time), this method will not work for you.. You could block yourself out of your own blog!

1. First, Determine your IP address from any free service, such as: WhatIsMyIp.com
2. Second, Download your .htaccess file from your blog server in the /wp-admin/ folder (Do NOT Replace it on your blog directory.. Only in the Wp-Admin Folder) and open it with Notepad++ (A free utility that makes coding and code editing a breeze).
3. Add the following code to the file:
AuthUserFile /dev/null
AuthGroupFile /dev/null
AuthName “Example Access Control”
AuthType Basic
<LIMIT GET>
order deny,allow
deny from all
allow from xxx.xx.xx.xxx
</LIMIT>
4. Replace xxx.xx.xx.xxx with your IP address you found on the WhatIsMyIp.com website
5. Save the file and reupload to your server, and you should have full access to your blog, but nobody else will because they don’t have your IP.

Now you have one less thing to worry about in terms of security, hope you’ve enjoyed this Saturday tutorial!

Credits: http://www.reubenyau.com/

Disclaimer: Brad Blogging is not responsible for, and expressly disclaims all liability for, damages of any kind arising out of use, reference to, or reliance on any information contained within the site. While the information contained within the site is periodically updated, no guarantee is given that the information provided on this website is correct, complete, and up-to-date.

Related posts:

  1. Weekend WordPress Security Tip: Index.html
  2. Weekend WordPress Security Tip: What To Do When Your Blog Is H4CK3D
  3. Saturday Weekend Security Tip: Remove This Useless Tag
This entry was posted in Web Security and tagged .htaccess, Web Security. Bookmark the permalink. Post a comment or leave a trackback: Trackback URL.

Enjoy this post? Theres more to come, so click here to subscribe to our RSS Feed.

Loading...
« A Guest Blogger on Guest Blogging
Create A “Sidenotes” Section On Your Sidebar »

4 Comments

  1. Armand
    Posted August 24, 2008 at 6:08 am | Permalink

    Cool, but it seems can’t work for me because I don’t have a dedicated IP address. In other words, my IP is dynamically changed. But this is a good tip to protect our wp blog.

    Armand’s last blog post..Google Adsense Website Temporarily Down

    Reply
  2. bradblog
    Posted August 24, 2008 at 6:51 am | Permalink

    @ Armand – Yea, No system is perfect, but since I have a dedicated IP, it works out well. I thought I’d pass the info on to someone that has a dedicated IP for some extra security :)

    Reply
  3. Justin Wright
    Posted August 25, 2008 at 10:39 am | Permalink

    Yeah that seems like a good way to prevent hackers. Unfortunetly it would not work for me since I write my blog posts from all over the place. I rarely use the same ip, or laptop for that matter. But it is still a goot idea.

    Reply
  4. testerimsi
    Posted April 9, 2010 at 9:01 pm | Permalink

    Here is more information please check it : http://www.google.com

    Reply

One Trackback

  1. By Saturday Weekend Security Tip: Remove This Useless Tag | Brad Blogging on August 30, 2008 at 3:20 am

    [...] it up in Notepad++ (That I Recommended Last Post) and find the line that says: meta name=”generator” content=”WordPress <php [...]

Post a Comment

Click here to cancel reply.

Your email is never published nor shared. Required fields are marked *

*
*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

CommentLuv badgeShow more posts

2136 RSS Subscribers

Subscribe today to receive any updates on this blog for free!

You'll also receive, "The Blog Manual" free of charge for being a subscriber which you can download at the bottom of each post.

 


Hosted by EZP.net

You might notice how quick this site loads. This is because of EZP.net's awesome web hosting services, from quick support to premium hardware, this company is one notch above the rest. You should use EZP.net to host your sites... They care about their customers.

  • Popular Posts
  • Categories

Popular Articles

  • Optimize Repeated Web Backgrounds with Photoshop
  • 16 Jquery Slideshow Scripts You Cannot Miss
  • How to Create your Own 4 Column Blog Footer - HTML/CSS Included!
  • How To: Reduce Your Blog's Bounce Rate

Blog Categories

  • Advertising & Blogs
  • Article Readability
  • Asides
  • Blog Comments
  • Blog Design
  • Blog Loading Speed
  • Contemplation
  • Featured Posts
  • How To
  • Increase Readers
  • Increase Traffic
  • Interviews
  • Jquery Tools
  • Previous Contests
  • Tutorials
  • Unique Widgets
  • Web Security
  • Website Reviews
  • Wordpress Coding
  • Wordpress Templates

About The Author

Brad Ney

I am a Wordpress enthusiast, part-time website designer, and enjoy using the latest technology via the internet for website promotion. I enjoy writing about startup websites, XHTML, CSS, Wordpress based on what I've learned in the industry.

01. Subscribe!

Click the shiny button for the RSS Feed. This will allow you to recieve each update either via email or via your favourite RSS Reader.
Beats checking the site for new updates!

02. Hand-Picked Articles

  • The Following Mentality Of The Internet
  • Blog Comment Spam
  • Increase Audience Participation with Blog Polls
  • 9 Jquery Slideshow Applications You Cannot Miss

Spend some time reading BradBlogging's most famous blog articles.

03. Start a Blog!

Take advantage of all the information here by using the resources below to start your website:

1. Register A Domain Name

2. Top Notch Web Hosting

04. Contribute

Have a great idea for an article? Want something written about? Drop me a line!

Claim Your Free Blog Guide and Wordpress Template!

It's Brad Here and I just wanted to let you know that you are missing out on two free downloads I have for my readers. You can obtain these downloads for free by subscribing below - I promise that I will not spam and only send you updates from this blog.

Subscribe Today: