Permanent admin login location change

Post Reply
User avatar
oldteacher
Sr. Bludit
Posts: 37
Joined: Mon Jan 25, 2016 5:46 pm

Greetings.

I have read this viewtopic.php?t=859

Would these files not be overwritten during some updates to core?

Due to so many brute force attempts, would like to change the login /admin to different location. Dealing with blogs that young people write and really need a permanent solution. Even with brute force changed in security.php rouge people continue to hammer the sites.

Thanks in advance.

PS: be really nice feature to have this built-in to admin dashboard:)
User avatar
Edi
Site Admin
Posts: 3121
Joined: Sun Aug 09, 2015 5:01 pm
Location: Zurich
Has thanked: 54 times
Been thanked: 77 times
Contact:

Have you read this in the documentation:

Brute Force Protection
Clickwork - Websites mit Bludit | Planet Bludit - Tipps und Snippets
User avatar
oldteacher
Sr. Bludit
Posts: 37
Joined: Mon Jan 25, 2016 5:46 pm

Have you read this in the documentation:

Brute Force Protection
Yes sir, have read the brute force docs and even lowered the default settings.

But, if I am not mistaken, the offending person/script is still hitting the /admin page, correct? Maybe I am wrong in assuming the page is still accessible and only actual login is blocked?

Thanks.
User avatar
Edi
Site Admin
Posts: 3121
Joined: Sun Aug 09, 2015 5:01 pm
Location: Zurich
Has thanked: 54 times
Been thanked: 77 times
Contact:

Another idea... You can block the IP:

http://www.htaccesstools.com/block-ips/
Clickwork - Websites mit Bludit | Planet Bludit - Tipps und Snippets
User avatar
oldteacher
Sr. Bludit
Posts: 37
Joined: Mon Jan 25, 2016 5:46 pm

Another idea... You can block the IP:
Yes, that would work.

But with 20+ kids blogs with 20+ htaccess files and many different IP's hacking away, would have to dedicate someone just for that job. Be a nightmare to keep up with and soon htaccess files would grow large.

Thanks for the input.
User avatar
oldteacher
Sr. Bludit
Posts: 37
Joined: Mon Jan 25, 2016 5:46 pm

I am not sure, was looking at https://docs.bludit.com/en/security/cus ... -panel-url last week and do not see in init.php:

Code: Select all

define('ADMIN_URI_FILTER', 'admin');
Maybe I am not understanding how to use. Do the docs mean I should add that line into init.php ?
User avatar
diego
Site Admin
Posts: 773
Joined: Sat May 16, 2015 2:53 pm
Been thanked: 1 time
Contact:

Sorry, my mistake on the latest version I changed the variables to variables.php file.
I updated the documentation.

PD: Have you back to Bludit?
User avatar
oldteacher
Sr. Bludit
Posts: 37
Joined: Mon Jan 25, 2016 5:46 pm

latest version I changed the variables to variables.php file.
Good deal, works perfectly now.
PD: Have you back to Bludit?
I have been a strong supporter since the very first time used Bludit, absolutely love it! But, I am only a lowly worker bee and must take directions from the queen bee:) There is currently test between WordPress multi-user and few others, including Bludit. I think each day more of our users are choosing Bludit because fast, low on resources and simple.

Themes are the biggest issue. When I see that there will not be any more major changes, plan on creating some Bludit themes as classroom project. Do not want to spend time on project with kids and have the themes outdated next Bludit update.

Thank you both for your help.
Post Reply