WordPress.org

Make WordPress Core

Opened 6 years ago

Closed 6 years ago

#27611 closed enhancement (duplicate)

Change login URL without plugin.

Reported by: nickadamstv Owned by:
Milestone: Priority: normal
Severity: normal Version: 3.9
Component: Login and Registration Keywords:
Focuses: Cc:

Description

Brute force attacks against WordPress sites are getting worse. They are so common because all WordPress sites use the default login URL (wp-login.php) unless they are using a plugin.

About 3 years ago a ticket (#16411) was opened related to this issue, and was closed because it was suggested that this should only be done by plugins. The problem with this solution is that plugins aren't always updated by developers even if they stop functioning, leaving users vulnerable.

As the problem continues to get worse, it needs to be addressed and resolved. The ability to change the login URL should be a core component since it's an issue that affects all WordPress users.

Change History (1)

#1 @SergeyBiryukov
6 years ago

  • Milestone Awaiting Review deleted
  • Resolution set to duplicate
  • Status changed from new to closed

Duplicate of #24673.

Note: See TracTickets for help on using tickets.