There is a great plugin to secure your WordPress login page called Login Lockdown which you can download from the wordpress.org. The plugin will protect your site from brute force attacks where the hackers want to discover your password. This is achieved by locking out an IP range after a certain number of attempts are detected in a short period of time. This is a great plugin that can be used in conjunction with the Google Authenticator plugin that I wrote about in a previous article. With these two two plugins running in tandem it is going to make life pretty difficult for a hacker to access you WordPress admin page. They will first of all need to guess your password within the number of attempts you have configured the plugin for and they will require the six digit code that will be generated by your phone using the Google Authenticator app. The login page of your WordPress site will more than likely be the first place people will attempt to gain access. So taking the necessary steps to secure your WordPress login page is vital to make it that much more difficult to access your site.
Adding extra security to your WordPress sign in page
Securing your WordPress sign-in page is something that should be considered by all WordPress admins. Wordpress is the world’s most popular blogging and content management system with approximately 20% of the world’s websites using it. However there are issues with security just like any system out there today. Whether the system is out on the internet or sitting inside a private network there is always going to be someone trying to get past the security to inflict some sort of damage. Therefore it is always a good idea to put as many obstacles as possible in place to hinder these people in their attempts to cause harm to your website or internal systems.
If you are running a WordPress site one of the places I would suggest adding additional security is on the WordPress sign-in page. One of the options to add additional security is by implementing 2-step authentication. Adding this additional security will require a randomly generated six digit code to be input when logging in to your WordPress sign-in page. Even if your username and password are stolen, the person wanting to use your details would also have to have your phone to login. This can be achieved by installing the Google Authenticator plugin.