You can make it so no one can register by clicking off “Anyone can register” in your Admin.
Furthermore, you can choose a really good password, install a login lockdown plugin and enable logins over https. In most cases this is secure enough.
If your really paranoid you can allow access to only your IP by using .htaccess.
<Files wp-login.php>
order deny,allow
deny from all
allow from 11.11.111.111 (your IP)
</Files>
To do a re-direct you can try something like this in your .htaccess.
RewriteEngine On
RewriteBase /
RewriteCond %{REMOTE_HOST} !^127\.0\.0\.1 (Your IP)
RewriteCond %{REQUEST_URI} !/wp-login\.php$
RewriteRule .* http://www.yourhomepage.com [R=403,L]
# 403 is a "forbidden", you can change this to another status code
Related Posts:
- Is there any way to rename or hide wp-login.php?
- Increase of failed login attempts, brute force attacks? [closed]
- How to fake a WordPress login?
- Brute force attack?
- Receiving “This content cannot be displayed in a frame” error on login page
- Websites defaced by uploading script using theme editor
- Make wordpress admin failed login attempt return 401
- WordPress login urls
- Store brute-force IP addresses
- How to create a private login page for admin.?
- WordPress Security – How to block alternative WordPress access
- wp-admin folder, brute force, and password protection
- Sniffing wordpress user’s credentials
- disable site_url redirect in wp-login.php
- Does WordPress (or a plugin) reveal login credentials to admin?
- Is wp_login_form secure on a non secure page?
- WordPress login security
- Why isn’t the login page rate limited by default?
- How can I password protect a WordPress site without requiring users to log in?
- Input sanitation
- How to Prevent Brute Force Attack on WordPress
- Advice on redirect to lock site from unauthorized users
- Where is the php file, that does the checks for login information?
- Error on WordPress Login
- Access log “POST /wp-login.php HTTP/1.0” 400
- force login loophole
- I need to find which is the file that checks the DB for correct login (username, password)
- How to create separate login for authors/moderators/subscribers?
- How to invalidate `password reset key` after being used
- Site is not loading after relogin attempts on SSL
- Some crawlers/bots attempting to login with very good guesses. How?
- Hide wp-login.php but not the widget
- How login is possible, if I deny login page via nginx?
- Custom login form
- Adding extra authentication field in login page
- How to check in timber if user is loggedin?
- Stop WordPress from logging me out (need to keep me logged in)
- Customize wp_new_user_notification_email()
- Need to execute a cron job
- Masking logout URL
- Login email after registration never sent or received
- How can I retrieve the username and password from my WordPress installation?
- User Directory without a Plugin
- User logon by using mobile number [closed]
- Pre checking condition before login
- Custom Connect to Facebook, problem logging in/logging out
- Redirect after empty login username and password
- WordPress Login page trashed
- Are there ways of logging in that bypass wp-login.php altogether?
- Change Favicon on Login Screen?
- Admin username and password
- Customizing the WordPress login form
- How to integrate external user tables with WP?
- WordPress as webapp login session
- replace wp-login.php login forms via a hook & use custom forms with wp-login form validation
- How can I add a login/logout link in the sub-nav of my website?
- Odd login issue that needs manual page refresh on some devices
- WordPress asking for login on public pages on localhost
- Session Experies and Get Logged Out Within Few Minutes
- Good way to block users within a multisite setup without deleting them?
- 404 redirect wp-login and wp-admin after changing login url [closed]
- Two factor authentication
- Disabling standard registration login with username/email and password?
- Login form doesn’t log in
- Possible to display a button only if user are login?
- Disable all other page except index,register,login till user login
- Which modification to login only certain role?
- Auto login after reset password
- Require login for specific templates
- WordPress Login and Register Link
- Login and Forgot password in Lightbox
- WordPress Login redirection according to user role
- Getting a person’s username from a wordpress cookie
- Prevent display password on wp-login.php
- WordPress ‘limit_login_lockouts’ using internal ip adress
- wp_get_current_user does not work properly on log in page
- How do I limit access to wp-admin to an IP range?
- WordPress Logout Problem [closed]
- Timezone Change Locked Me Out? [closed]
- One time login on 2 different WordPress sites
- How are all users now set to inactive?
- Unable to login into WordPress 401
- Custom user roles are unable to login
- Google reCaptcha on WP login page
- Recovering log in information
- Log in only by email and no username
- Extend Cookie with auth_cookie_expiration not working
- Modify wp-login.php Labels Conditionally Based On Referring URL
- Stop customers and subscribers from login to dashboard
- Why does /wp-admin login send me to this landing page?
- Locked out of WordPress admin area [closed]
- How to dequeue the default CSS styles on the wp-login.php page?
- confirmation email is send from my local host registration of a user but mail will not display in there email account?
- Server error after log in
- Changed from HTTP to HTTP, can login no longer login
- Without user loging inner page is disable wordpress [duplicate]
- WordPress and Magento: let WordPress manage user registration and logins?
- How to change the login URL
- Click on banner to register to the blog
- What is the difference between /sbin/nologin and /bin/false?