“disable” WP-ADMIN folder?

  • sirhawkeye64

    (@sirhawkeye64)


    8 years, 11 months ago

    Can I rename the “wp-admin” folder so that it’s harder for someone to try to access the control panel? If not, can I at least rename the “index.php” file in the wp-admin folder to something else, perhaps something like “index88453.php” and then create a dummy “index.php” as to lock-down the admin console better?

    or is there another better way to secure my admin console?

Viewing 1 replies (of 1 total)
  • Moderator James Huff

    (@macmanx)

    8 years, 11 months ago

    Most things in WordPress expect the wp-admin directory to be where it is, moving the files or renaming index.php will break that. Plugins do exist to “safely” re-locate it, and if you choose to do so, I recommend using one of the plugins rather than doing it yourself.

    In general, if your user’s password is strong, the directory is safe. Adding some additional authentication on top of that wouldn’t hurt, but moving the entire thing is a bit overkill (especially since something could reference javascript available in the wp-admin directory from the front of the site, thus still “exposing” it).

    For some recommended security measures, see https://codex.ww.wp.xz.cn/Hardening_WordPress

Viewing 1 replies (of 1 total)

The topic ‘“disable” WP-ADMIN folder?’ is closed to new replies.

Tags