/ Register

Join the community today
Register Now

Wordpress How to remove wp-login.php protection

Discussion in 'Blogs & CMS usage' started by mikea, Oct 22, 2015.

Tags:
Previous Thread Next Thread
Loading...
  1. Oct 22, 2015 #1
    mikea

    mikea New Member

    7
    1
    3
    Sep 23, 2015
    Ratings:
    +1
    Local Time:
    1:38 AM
    1.9.5
    10.0.21
    I'm trying to remove wp-login.php protection by resetting it with no username and password. But after nprestart it still ask for username or password.
     
  2. Oct 22, 2015 #2
    mikea

    mikea New Member

    7
    1
    3
    Sep 23, 2015
    Ratings:
    +1
    Local Time:
    1:38 AM
    1.9.5
    10.0.21
    Even if I delete the htpasswd_wplogin and do nprestart, wp-login.php still is asking to authenticate.
     
  3. Oct 22, 2015 #3
    eva2000

    eva2000 Administrator Staff Member

    55,189
    12,251
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,829
    Local Time:
    3:38 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    for Wordpress Nginx Auto Installer (WP Super Cache) ?

    if you said yes to ssl, you need to edit both /usr/local/nginx/conf/conf.d/newdomain.com.conf and /usr/local/nginx/conf/conf.d/newdomain.com.ssl.conf vhost configs for http and https where newdomain.com is yourdomain.com

    then remove 2 lines
    Code:
        auth_basic "Private";
    auth_basic_user_file /home/nginx/domains/newdomain2.com/htpasswd_wplogin;
    restart nginx
     
  4. Oct 22, 2015 #4
    mikea

    mikea New Member

    7
    1
    3
    Sep 23, 2015
    Ratings:
    +1
    Local Time:
    1:38 AM
    1.9.5
    10.0.21
    Yay. That worked. Thanks .
     
  5. Nov 30, 2015 #5
    Epic Internet Marketing

    Epic Internet Marketing Member

    40
    7
    8
    Aug 3, 2014
    New York, NY
    Ratings:
    +18
    Local Time:
    3:38 AM
    1.12.x | PHP 7.1.x
    10.1
    Gotta say my nginx sites seem to get wp-login.php hammered sometimes so it's good to keep those lines in there and use the quick-login link if you can bookmark it.

    Also a wp-login.php* rule on CloudFlare has done wonders for stopping the bots.
     
    Last edited: Nov 30, 2015
  6. Nov 30, 2015 #6
    eva2000

    eva2000 Administrator Staff Member

    55,189
    12,251
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,829
    Local Time:
    3:38 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    yup that's why i password protected it :D
     
  7. Oct 11, 2016 #7
    Jota

    Jota Member

    78
    18
    8
    Oct 9, 2014
    Barcelona
    Ratings:
    +20
    Local Time:
    8:38 PM
    U could add an option to centmin menu to protect / unprotect a WP site ! ;)
     
  8. Oct 11, 2016 #8
    eva2000

    eva2000 Administrator Staff Member

    55,189
    12,251
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,829
    Local Time:
    3:38 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    well centmin mod 123.09beta01 menu option 22 has option at setup time to ask if user wants to protect or not protect wp-login.php :)
     
  9. Oct 11, 2016 #9
    Jota

    Jota Member

    78
    18
    8
    Oct 9, 2014
    Barcelona
    Ratings:
    +20
    Local Time:
    8:38 PM
    U're a mastah ! ;)
     
  10. Oct 12, 2016 #10
    ethanpil

    ethanpil Active Member

    173
    55
    28
    Nov 8, 2015
    Ratings:
    +101
    Local Time:
    3:38 AM
    What rule do you use on cloudflare?
     
  11. Oct 12, 2016 #11
    JarylW

    JarylW Active Member

    216
    41
    28
    Jun 19, 2014
    Singapore
    Ratings:
    +103
    Local Time:
    1:38 AM
    Cloudflare recommends setting high security for wp-login / wp-admin . You can even enable the "I'm under attack" on your page rules for browser checks
     
Previous Thread Next Thread
Loading...

.