Jan 19
Quick links
- What is the problem?
- So how do I go about fixing it then?
- Add a new user account with admin role
- Log in with new user account and dumb down the admin account
- Secure the admin account to deliberately make it harder for hacking attempts
- That’s all there is to do!
What is the problem?
WordPress prides itself on its 5 minute install allowing you to essentially upload the core files, create a database and then run a script to join the two together. Easy. But secure it isn’t…
A hacker with limited knowledge of WordPress knows that the login screen is generally found at the following path of http://blog.domain/wp-login.php and also that WordPress by default sets up an admin account during the installation stage. You would hope the first thing the user then does is logs in with the auto-generated details and changes the password to something memorable and hard to guess right? You would have thought so.
Recent Comments