I have installed the following WP plugins at my site:
Hide My WP
Wordfence free
All In One WP Security & Firewall (with 410 points)
DNS from CloudFlare (medium settings)
Good global hosting, not cheap.
My Admin name is like "gfutiewf" and login link like: mysite.com/dfwhc.
That´s all okay, today I see again in log:
Anybody at login page try the "gfutiewf" username with bad password...
How? From where he see the login url and admin name?
I'm guessing they were guessing your author ID like so:
http://www.example.com/?author=1
http://www.example.com/?author=2
...
Once found, the WordPress would redirect to:
http://www.example.com/author/myrandomname/
which by default would be your admin name.
One way to solve that would be to change the value of user_nicename column in users table in the database to something else, like 'admin'. That way, the redirect will change to:
http://www.example.com/author/admin/
First off make sure you have the latest version of Hide My WordPress – Security Plugin - currently v1.1.028
Make sure you are not redirecting the old login (ex. wp-login.php to the new login page)
Also are you using Hide My Wp PRO? The current free version only hides the admin and login paths to see if the product is compatible with your WordPress.
To hide all the URLs you need to activate the Ninja mode and the plugin will hide all the paths from your website.
For further help please share your site's name so we can take a look at it.
Hope that helps.
I downloaded the WordPress plugin 'Password Protected' for my WordPress site, which adds a password to my webpage so no one can access the material in there without logging in first. It works great and does exactly what I want it to do. My issue is that I need to customize it (change the WordPress logo and add some text). I found multiple guides on how to do this but none that could be applied in my case.
this guide:
https://codex.wordpress.org/Using_Password_Protection#Customize_the_Protected_Text
Tells me to edit the functions.php file. However, I cannot access it from the WordPress admin interface.
this guide:
https://www.binaryturf.com/website-design/business/how-to-edit-functions-php-in-wordpress/
Tell me that it should be available by Apperance -> Editor
but there's no 'Editor' under Apperance for me.
Does anyone how I can edit the login-page for Password Protect, or any other plugin I could use that allows me to change logo and text for the login page (for free)? Or how I can edit the functions.php file in WordPress admin?
Thanks!
I have a problem that every some days my theme has changed and add one file upload form.In wordpress editor i found some hacking code
so how to increase my security in wordpress theme
Basically, you have to keep your website updated with latest version of Wordpress and your plugins as well in order to not leaving yourself open to attacks.If your username is "admin" and your password isn"t strong enough, your site is defenceless to a malicous attack. Never use admin as your user name. I recommend you to install "wordfence security" plugin for your website"s security.
I have developed a wordpress theme and have uploaded and chosen that at http://www.digitalmanager.pk/ The problem is, when I am logged in my wordpress acccount on this sight, it shows the correct theme i.e. the one that I have chosen. But as soon as I logout of my wordpress account, it shows the default 2014 theme. Below is the screenshot, when I am logged in:
And the other one you can check for yourself by visiting the site at http://www.digitalmanager.pk/
P.S. I have removed the cache and tested but nothing changed.
It may be due to WP Super Cache Plugin. Just deactivate the WP Super Cache plugin from the Installed Plugins. Then upload upload your theme again.
I'm having a very simple problem. I'm new to WordPress and I'm trying to install a plugin.
Everyone says there's a "plugins" option on the sidebar-menu in the admin panel, but I don't see one! I've looked for it in all the sub-menus too.
Whenever I try to search for this problem, I get results about creating a plugin to show on the admin menu.
Anyway, how can I get the plugins menu to show up?
The issue is almost certainly related to one of two things:
1) You don't have permissions (are you logged in as admin?)
OR
2) The theme (or a plugin) has disabled the plugins menu.
After you've checked to be sure that you are an administrator, then you should attempt to view this page:
http://www.yourdomain.com/wp-admin/plugins.php (replacing www.yourdomain.com with your site's domain name).
If it's accessible, then it's time to start exploring the theme (which theme are you using?) and possibly some of the plugins that might have disabled the menu item.
FYI, the method to remove dashboard menu items is covered here: http://www.wprecipes.com/how-to-remove-menus-in-wordpress-dashboard
If you did double check your file permissions (i.e. 755 for folders and 644 for wordpress files on Linux), please consider editing your wp-config.php file and change
define('DISALLOW_FILE_MODS',true);
to
define('DISALLOW_FILE_MODS',false);
The Add New option in Plugins menu will show up, also if you have internet connection, possible updates will be shown up.
This what I found looking for the same problem, I guess this is your situation also:
If your site is hosted on WordPress.com:
Plugins: Plugins are tools used to extend the functionality of the WordPress platform. However, they are only applicable to self-hosted blogs and web sites using the WordPress.org software. Plugins are not permitted here at WordPress.com for various security reasons.
On wordpress.com hosted sites, you don't have permission to install plugins. You must have an own wordpress installation to do that.
I found this post searching for help with a similar issue with a self-hosted WordPress installation -- in this case it was a site that a friend had paid someone to make, but then took them off the work and asked me to help out.
There were several regular menu options missing -- it turned out to be down to a plugin called Admin Menu Editor that the previous web guy had installed to limit the options available to my friend, so they wouldn't mess with things.
In this case I could access the options for Admin Menu Editor by going to http://www.example.com/wp-admin/options-general.php?page=menu_editor
In one of my cases it turned out to be strictly file permission thing so apache users could not access the plugins directory.
I have never seen that problem before. However, try either expanding all the current menu items to see if "plugins" are listed there, or try deactivating some/all of your plugins to see if one of the plugins are conflicting somehow and making your plugins menu not display.
I know this is an old question but I hit this problem at work recently with a WordPress site I inherited that had been originally developed by an external company. I tracked it down to the roles assigned to the user account. The "admin" account I had been given was actually assigned a restricted role that didn't have permission to access most of the settings.
Fortunately, I have access to the database so I was able to modify the assigned role directly. The default database prefix in WordPress is wp but you may need adjust these steps according to your own database.
First, find the user_id in the wp_users table for the account you want to modify and then run the following SQL against your WordPress database.
UPDATE wp_usermeta SET meta_value = "a:1:{s:13:""administrator"";b:1;}" WHERE user_id = {your_user_id} AND meta_key = "wp_capabilities";
UPDATE wp_usermeta SET meta_value = "10" WHERE user_id = {your_user_id} AND meta_key = "wp_user_level";
The next time you log in with that user account it should now have administrator privileges.
If you are using the multisite feature of Wordpress you will only see the plugins menu if you are super admin.
In the menu go to "My Sites" at the top of the page then click "Network Admin". (If you do not have this option you are not super admin.) Under "Network Admin" click "Dashboard" and then the plugins menu will appear. In your Network settings you can enable plugins for the sites.
The issue I was having was even trickier: No one was super admin. I fixed this by overwriting the "is_super_admin" function (simply returning true always) and then editing the settings as needed, before removing the overwrite again.
If you install a local WordPress the Plugins sub menu will not appear for any of the sites you work. Click My Sites area at the top of the page then click Network Admin and then click Dashboard. The Plugins sub menu will appear there. Then install new plugins and use it on sites on which you are working.
Good luck.
For me, changing lines in wp-config.php worked. I changed:
define('DISALLOW_FILE_EDIT', true);
define('DISALLOW_FILE_MODS', true);
to
define('DISALLOW_FILE_EDIT', false);
define('DISALLOW_FILE_MODS', false);
There might be a couple of reasons for the same. Some of them are:-
Reason 1 - When the website is hosted on wordpress.com
Reason 2 - When the user is logged in with a non-admin account
Reason 3 - When the WordPress website/blog is a part of a multi-site-network and the network admin has disabled the plugin menu
Reason 4 - Plugins Conflict