Blog time now

  • WordPress
  • How to
  • Blogging
  • Tips & Tricks
  • SEO
  • Social Media
  • Free Lists
Home  »  Wordpress   »   How to limit access to wordpress login page by IP address

How to limit access to wordpress login page by IP address

Posted in Wordpress By Sureyea

limit access to wordpress login page by IP addressBy default your wordpress login page is open for everybody, anyone can just type /wp-admin or /wp-login.php next to your domain name and reach your site entry point. So what do they do after reaching the entrance, they simply try to get in to your dashboard by attempting several logins. You should always be aware of malicious visitors who try to break your site login. Most of the times they automate brute force attacks (some hacking programs) to guess your wordpress user-name and password. In order to protect your site from brute force attacks and hackers you must take several security measures. Here we will see how to limit access to wordpress login page (wp-login.php) by IP address which is used as a strongest security act for private blogs.

In the initial period of this blog we have published a detailed article about preventing wordpress site from being hacked. If you go through that article then you will come to know some basic level security tips. To reduce the risk you have to consider these steps that is you have to maintain strong passwords, you should not use the default username admin etc. Also we have posted about limiting the number of login attempts which will be useful in blocking a user if he tries more than a number of specified logins. Anyhow the best part in protection would be double locking your wordpress admin directory which adds an additional authentication.

How to limit access to wordpress login page by IP address

Brute force attacks are executed by software’s which are aimed to gain entry to your site. The point is it tries multiple combinations of usernames and passwords again and again until it gets success. So due to such strong attacks your server runs out of memory and suddenly stops responding. If you are the only one running your blog (private blog/website) then you can deny your site login to everybody else except yourself.

<Files wp-login.php>
        order deny,allow
        Deny from all
 
        # Only allow this IP
        allow from xx.x.xxx.xx
        # Allow another IP
        allow from xx.x.xxx.xx
</Files>

To limit access to wordpress login page by IP address copy the code and paste it in your site’s .htaccess file just above everything. Next replace xx.x.xxx.xx with your IP address and make sure that your IP address stays static or else you have to change it every time. The second IP address is optional which you can remove if you want. Hope your single authored wordpress blog is much safer than before.

Free Download WordPress Themes
Premium WordPress Themes Download
Download WordPress Themes
Premium WordPress Themes Download
lynda course free download
download samsung firmware
Premium WordPress Themes Download
udemy paid course free download

Related Posts

  1. How to change wordpress login logo – Customizing wordpress login page Are you creating an elegant wordpress site for your client and willing to change the wordpress login logo? Changing the default wordpress logo and customizing the login page shows some...
  2. Limit login attempts in wordpress site – WordPress security Recently our hosting blocked one of our wordpress site and we couldn’t find the exact reason and when we requested about this problem to our hosing they mentioned that the...
  3. How to change wordpress username – Change username admin for security Do you need to change you wordpress username that is the default username admin, then take a look at this post. In wordpress user settings you can only change your...
  4. Prevent image hotlinking with .htaccess in wordpress – Hotlink protection Are you concerned about people stealing images from your website? We are not asking about people who copy images, we are talking about image hotlinking.  Content scrapers – Yes, spammers...
  5. How to deactivate wordpress plugins manually using FTP and phpMyAdmin You can customize and add extra features to your wordpress site by using plugins. Each and every wordpress plugins are tested before it gets available in wordpress community. If even...
Tags:.htaccess, How to, IP address, Security, Wordpress, wordpress login page, Wordpress security, wp-admin, wp-login

  • Join over 27.4k Subscribers

    Subscribe to our blog feeds and receive high quality resources daily. No spam!

  • Top Trending Today

    • How to automatically redirect Blogger blog to another blog or website
      How to automatically redirect Blogger blog to another blog or website
    • Update Facebook profile picture without notifying everyone
      Update Facebook profile picture without notifying everyone
    • How to add Google Analytics to Blogger – Google analytics for Blogger
      How to add Google Analytics to Blogger – Google analytics for Blogger
    • How to use Google Webmaster tools effectively for SEO
      How to use Google Webmaster tools effectively for SEO
    • What are labels and how to use labels in Blogger to sort your content?
      What are labels and how to use labels in Blogger to sort your content?
    • Popular Posts
    • Recent Posts
    • How to create sitemap for Blogger blog – Blogger sitemap XML

      A Sitemap is nothing but a list of accessible

      July 18, 2014 -0 Comments
    • Setup nRelate related posts widget in Blogger –LinkWithin alternative

      As you all know internal linking is more beneficial

      July 18, 2014 -0 Comments
    • How to add related posts to Blogger – Related posts widget for Blogger

      Blogging is a one nice way to help peoples.

      July 18, 2014 -0 Comments
    • Create & add custom robots.txt file in Blogger – Crawl & index

      Have you ever heard the name robots.txt or have

      July 18, 2014 -0 Comments
    • How to receive emails in Gmail primary inbox – Handling Gmail tabs

      Have you subscribed to any email newsletters and not

      July 18, 2014 -0 Comments
    • How to fix Feedburner feed double titles issue – Quick tip

      Most of the wordpress users syndicate their RSS feeds

      July 18, 2014 -0 Comments
    • Understaning CSS selectors for beginners – ‘>’, ‘+’ and ‘~’ symbols

      CSS is an absolute website beautifier, with Cascading Style

      July 18, 2014 -0 Comments
    • How to recover deleted blog post on Blogger – draft, published post

      If you are a sincere Blogger then you will

      July 18, 2014 -0 Comments

  • Free SEO Tools

About Us

Hi, Welcome to blogtimenow.com, a blog and a community based website that mainly focuses on providing quality articles and inspirational stuff constantly to users which is founded on July 2013 by Sureyea. This weblog is dedicated for designers, developers, bloggers, internet marketers, web and computer enthusiasts.

Recent Articles

  • How to receive emails in Gmail primary inbox – Handling Gmail tabs
  • How to fix Feedburner feed double titles issue – Quick tip
  • Understaning CSS selectors for beginners – ‘>’, ‘+’ and ‘~’ symbols
  • How to recover deleted blog post on Blogger – draft, published post
  • How to customize scrollbar style in wordpress using CSS

Site Links

  • About Us
  • Comment Policy
  • Contact Our Team
  • Privacy Policy
  • Suggest Us (or) Submit Tips
  • Terms and conditions
Blog time now Copyright © 2025.
All Rights Reserved Reproducing content and other materials without explicit permission is strictly prohibited. Back to Top ↑