You can make it so no one can register by clicking off “Anyone can register” in your Admin.
Furthermore, you can choose a really good password, install a login lockdown plugin and enable logins over https. In most cases this is secure enough.
If your really paranoid you can allow access to only your IP by using .htaccess.
<Files wp-login.php>
order deny,allow
deny from all
allow from 11.11.111.111 (your IP)
</Files>
To do a re-direct you can try something like this in your .htaccess.
RewriteEngine On
RewriteBase /
RewriteCond %{REMOTE_HOST} !^127\.0\.0\.1 (Your IP)
RewriteCond %{REQUEST_URI} !/wp-login\.php$
RewriteRule .* http://www.yourhomepage.com [R=403,L]
# 403 is a "forbidden", you can change this to another status code
Related Posts:
- Is there any way to rename or hide wp-login.php?
- Increase of failed login attempts, brute force attacks? [closed]
- How to fake a WordPress login?
- Brute force attack?
- Receiving “This content cannot be displayed in a frame” error on login page
- Websites defaced by uploading script using theme editor
- Make wordpress admin failed login attempt return 401
- WordPress login urls
- Store brute-force IP addresses
- How to create a private login page for admin.?
- WordPress Security – How to block alternative WordPress access
- wp-admin folder, brute force, and password protection
- Sniffing wordpress user’s credentials
- disable site_url redirect in wp-login.php
- Does WordPress (or a plugin) reveal login credentials to admin?
- Is wp_login_form secure on a non secure page?
- WordPress login security
- Why isn’t the login page rate limited by default?
- How can I password protect a WordPress site without requiring users to log in?
- Input sanitation
- How to Prevent Brute Force Attack on WordPress
- Advice on redirect to lock site from unauthorized users
- Where is the php file, that does the checks for login information?
- Error on WordPress Login
- Access log “POST /wp-login.php HTTP/1.0” 400
- force login loophole
- I need to find which is the file that checks the DB for correct login (username, password)
- How to create separate login for authors/moderators/subscribers?
- How to invalidate `password reset key` after being used
- Site is not loading after relogin attempts on SSL
- Some crawlers/bots attempting to login with very good guesses. How?
- Hide wp-login.php but not the widget
- How login is possible, if I deny login page via nginx?
- Custom login form
- Adding extra authentication field in login page
- How to check in timber if user is loggedin?
- Stop WordPress from logging me out (need to keep me logged in)
- Customize wp_new_user_notification_email()
- Need to execute a cron job
- Masking logout URL
- How can I retrieve the username and password from my WordPress installation?
- User Directory without a Plugin
- Pre checking condition before login
- Custom Connect to Facebook, problem logging in/logging out
- Redirect after empty login username and password
- WordPress Login page trashed
- Are there ways of logging in that bypass wp-login.php altogether?
- Change Favicon on Login Screen?
- Admin username and password
- Customizing the WordPress login form
- How to display username and password after registration
- How to integrate external user tables with WP?
- WordPress as webapp login session
- replace wp-login.php login forms via a hook & use custom forms with wp-login form validation
- How can I add a login/logout link in the sub-nav of my website?
- Odd login issue that needs manual page refresh on some devices
- WordPress asking for login on public pages on localhost
- Session Experies and Get Logged Out Within Few Minutes
- 404 redirect wp-login and wp-admin after changing login url [closed]
- Two factor authentication
- Login form doesn’t log in
- Redirect wp-login
- Show reCaptcha on Custom Frontend Login & Register Form [closed]
- Problems with is_user_logged_in() | Function in WP
- Is the login encrypted before it is sent? If so how to do I encrypt it the same way?
- What speaks against using a custom login.php / register.php to wordpress?
- Login fail with no error
- WordPress login doesn’t work when using preview domain
- Prevent Subscriber Role to login
- How to check if user is logged into wordpress on non-wordpress pages
- How to authenticate a user with an external webservice
- Login user using wp_signon and WP_User object
- Log in with email but no password
- Login form not saving values when login incorrect
- Abnormal activity at url /my-account/add-payment-method/
- Blacklist and Whitelist on login
- How to add custom authentication to wordpress login and register
- Link Users to external login db
- Change WordPress Login URL to External URL
- User does not exist
- WordPress login is now working, it just refresh the page and nothing happens.
- is_logged_in not working after login
- wp_signon() does not authenticate user guidance needed
- How to login to wordpress via Cpanel
- Redirect to previous page after login
- How to password protect pages in WordPress
- User account activation links are lacking query strings
- Creating login for client / customer that will take them to customized part of site
- wp-login.php just refreshes the form fields
- Login just resets/reset password link also does not work
- WP login pages redirect to homepage (cannot login)
- How to place wp-login.php in page or page template?
- Adding A Login Fail Notice
- Give user some feedback when they land on custom login page
- Trouble logging in and/or changing password
- How to put Login, Register and newsletter widget on the same page?
- Creating Custom Login Form Where Password Field is Dropdown Menu
- Browser Caching for Logged in Users
- how to login admin by using ip address
- Profile Builder Plugiin – how to add customize Login form fields?