Although you should already know that it is impossible to be totally immune to hackers so if they insist on accessing your site at the end, in one way or another, most likely to get it, our job is to put it as hard as possible .
And for at least not to facilitate the work ]what you have to avoid is always to give clues and WordPress gives enough. You already know them, as the installation user, which until very recently was always "admin" or the prefix of the database and now you can customize it in the installation process, and it's absolutely
Another clue is the error messages in access attempts but we already saw how to hide these clues from hackers. And then there are others, such as the location of the file ' wp-config.php ', which also we can change and some more. But perhaps the most obvious, which you are dealing with every day and the same thing you have not noticed, is that you always agree to manage WordPress through the route
http://misitio.com/wp-admin/ and you access through
Well, if a hacker wants to look for vulnerabilities to sneak through the most obvious thing will be through these routes, most of the time by doors that some plugin not updated, or with old code, have left open .
And a simple and effective way to hide these tracks in particular is the plugin CLAU or Custom Login and Admin that precisely does that, change the URLs that you access and manage . In addition, its configuration is sea integrated, even for multi-site installations.
Once installed you just have to go to " Settings -> Permanent links ", and there, just below, you can define the URLs Customized to access and manage your WordPress. You put the route you want, save options and that's it. From that moment, your access and administration URL will be of the type, for example,
Only a detail, use it with caution because it is still in phase ßeta and it does not get along well with some other plugins, and you already know that if it gives you problems you deactivate it by FTP . NOTICE : This publication is from two years ago or more. If it's a code or a plugin it might not work in the latest versions of WordPress, and if it's a news story it might be obsolete. Then do not say we have not warned you.