Strengthen the Security of Your WordPress Site with the WPMasterToolKit "Move Login URL" Module
The default WordPress login page, accessible via wp-login.php
is a frequent target of brute-force attacks and hacking attempts. To enhance your site's security, the Move Login URL in WPMasterToolKit lets you easily modify the connection URL and restrict access to wp-admin
to connected users.
Why use this module?
The module Move Login URL adds an essential layer of protection to your WordPress site. By masking and customizing the login URL, it dramatically reduces the risk of automated attacks while offering complete flexibility to customize the user experience. This module can replace well-known plugins such as WPS Hide Login or even Move Login.
Main features of the Move Login URL module
- Customize login URL : Change the default URL of
wp-login.php
for a personalized URL of your choice. - Secure redirection : Unauthenticated users attempting to access
wp-login.php
or to thewp-admin
are automatically redirected to a custom URL (such as a 404 page). - Enhanced protection : Prevents unauthorized access to sensitive areas of the site, including the dashboard.
- Intuitive configuration : A simple interface lets you define your new connection URL and your redirection URL.
- Multisite compatibility : Works perfectly with multi-site installations.
How do I use the Move Login URL module?
- Activate the : Access the WPMasterToolKit dashboard and activate the module Move Login URL.
- Customize the login URL :
- Go to the "Move Login URL" submenu in the WPMasterToolKit settings.
- Enter a new URL for the login page in the dedicated field (for example,
my-access
instead ofwp-login.php
).
- Configure the redirection URL:
- Define a URL to which unauthenticated users will be redirected when trying to access unauthorized areas.
- Save your settings : Click on "Save" to apply your changes.
- Go to your new URL : Your new login URL is now in place, and access to
wp-login.php
is blocked.
Use cases
- Improving safety : By hiding the default login URL, you make your site less accessible to malicious bots.
- Advanced customization : Offer a unique user experience by adapting the login URL to your brand.
- Reduce the risk of attack: Block unauthorized access attempts to
wp-login.php
andwp-admin
.
Technical documentation: the hooks used
The module uses several WordPress hooks to modify default behaviors:
- Filter
login_url
Replace the default URL forwp-login.php
with a personalized URL.
Example:add_filter( 'login_url', array( $this, 'login_url' ), 10, 3 );
- Filter
wp_redirect
Automatically redirects unauthorized requests to the defined redirection URL.
Example:add_filter( 'wp_redirect', array( $this, 'wp_redirect' ), 10, 2 );
- Action
template_redirect
Intercepts requests towp-login.php
orwp-admin
to redirect offline users.
Example:add_action( 'template_redirect', array( $this, 'redirect_export_data' ) );
- Action
site_url
Modifies the URL used for internal redirects.
Example:add_filter( 'site_url', array( $this, 'site_url' ), 10, 4 );
Our technical choices
- Simplicity and efficiency: The module relies on native WordPress hooks to guarantee optimal performance and maximum compatibility with other extensions.
- Increased safety : Custom URLs and redirects prevent bots and malicious users from accessing the default login page.
- Ease of use : The intuitive interface makes it easy for non-technical users to configure their settings.
Conclusion
The module Move Login URL from WPMasterToolKit is a must-have solution for strengthening the security of your WordPress site. With quick and easy configuration, you can protect your site against brute-force attacks and deliver a more personalized user experience. Try it today to protect your site and its users.