markei/wordpress-security-protection

Security & protection improvements: login event history, prevent login brute force, hide backend, update status API

Maintainers

Details

github.com/Markei/wordpress-plugin-security-protection

Homepage

Source

Issues

Documentation

Installs: 437

Dependents: 0

Suggesters: 0

Security: 0

Stars: 0

Watchers: 2

Forks: 1

Open Issues: 0

Type:wordpress-plugin

v1.5.1 2023-05-07 15:02 UTC

Requires

MIT e61fc40263d2cf7557b208d99210e6d78679a7dc

securitywordpresswordpress-plugin

This package is auto-updated.

Last update: 2024-11-07 18:31:21 UTC

README

Install the plugin via Composer

composer require markei/wordpress-security-protection

Activate the plugin in WordPress admin

Add the next two lines to wordpress/wp-config.php above require_once(ABSPATH . 'wp-settings.php');

define('MARKEI_SECURITY_PROTECTION_HIDEBACKEND_URL', '/my-secret-cms');
define('MARKEI_SECURITY_PROTECTION_UPDATEINFO_SECRET', 'super-secret-key');
define('MARKEI_SECURITY_PROTECTION_BLOCKXMLRPC', true);

Replace /my-secret-cms with an URL you like. Do not use my-secret-cms, wp-admin or wp-login! Mention the slash in the beginning. Replace super-secret-key with a random long value.

Log out and use your new URL to relogin.

The API for update status report is located at http://www.my-wordpress.tld/.markei/security-and-protection/update-state?secret=super-secret-key