Great idea. Needs work.

  • It is ‘effortless’ and it has made the “/wp-admin” page ‘forbidden’. However, the new login page location is hardcoded as “/login”. Not surprisingly, within an hour of installing, I’m seeing brute-force attackers now attempting this “/login” page (ie. an obvious page location for hackers). PLEASE, provide a configurable login page name. As is, this plugin is, in reality, useless (ie. hackers guess “login” as an alternate page).
    Also, no screens have appeared in my admin section (contrary to those described under “Screenshots”).
    Also, some spurious error msgs appeared overwriting my screen when I logged in.
    => Uninstalling since no real benefit in current form. Please work on this – WordPress desperately needs a hidden (admin) login page.

Viewing 1 replies (of 1 total)
  • Plugin Author Grégory Viguier

    (@greglone)

    Hi mkhallan.

    “it has made the “/wp-admin” page ‘forbidden'”
    The plugin does nothing with /wp-admin, maybe it’s a conflict with another plugin?

    “Not surprisingly, within an hour of installing, I’m seeing brute-force attackers now attempting this “/login” page”
    Your attackers seem smarter than mine ;o)

    “PLEASE, provide a configurable login page name.”
    Yes, it’s a work in progress, it will be available in v1.1.

    “Also, no screens have appeared in my admin section”
    The new screen (2nd screenshot) appears only in Multisite installations. For the first screenshot, this textarea appears in non-multisite installations, and only when the .htaccess file is not writable (it’s WP’s doing, not mine).

    “some spurious error msgs appeared overwriting my screen when I logged in.”
    Can you open a topic in the support forum and be more specific? It would help me to find the bug if there is one.

    Thanks
    Greg

Viewing 1 replies (of 1 total)
  • The topic ‘Great idea. Needs work.’ is closed to new replies.