[wp-trac] [WordPress Trac] #51386: Customized login address is visible in the comments section (was: Report a bug)
WordPress Trac
noreply at wordpress.org
Mon Oct 5 19:40:40 UTC 2020
#51386: Customized login address is visible in the comments section
----------------------------------+------------------------
Reporter: ahmad70043 | Owner: (none)
Type: defect (bug) | Status: closed
Priority: normal | Milestone:
Component: General | Version: 5.5.1
Severity: normal | Resolution: duplicate
Keywords: needs-privacy-review | Focuses:
----------------------------------+------------------------
Changes (by SergeyBiryukov):
* status: assigned => closed
* resolution: => duplicate
* milestone: Awaiting Review =>
Comment:
Hi there, welcome to WordPress Trac! Thanks for the ticket.
Just noting this has come up multiple times before, please see the
previous discussions in #7194, #13118, #15289, #21924, #24673, #38444,
#38800, #44552.
To summarize, the `wp-login.php` or `wp-admin` URLs are not intended to be
customizable, as that's just security through obscurity and doesn't really
help with anything, so there are currently no plans to implement this in
core.
To improve website security, I would suggest following these general
recommendations instead:
* Have strong password (at least 24 characters long, with numbers and
special characters).
* Don't give Administrator or Editor access to people you don't completely
trust.
* Download plugins and themes from official resources only.
* Keep WordPress, plugins, and themes updated to the latest stable
version.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/51386#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list