How to Hide Your WP Admin Login Page
You may wonder why you should be hiding your wp-login.php page on your WordPress website. With the WordPress CMS it is common that there are bots trying to guess your WP login details and trying to hack your website or install malware on it. If you ever had the Login Security Solution plugin installed on your website, you might got messages to your email notifying you that your website is undergoing a brute force attack. I have experienced this and got numerous amount of such emails.
No, you don’t have to worry, as this is common with many WordPress websites (including mine). And if you have a strong password and your WP username is not “admin”, you should be safe. However, you can take your security even to a further level by renaming your wp-login.php page to something different.
There are more ways to do this. If you’re using a security plugin like for example All In One WP Security & Firewall or a premium security plugin like e.g. iThemes Security Pro, you are able to rename your WordPress login page in the settings of these plugins.
Or you could also simply just use the plugin that is used particularly for this. My favorite plugin for this (and that I also use) is the plugin called WPS Hide Login. It’s a free plugin that you can download from the WordPress plugin repository. So feel free to download it and install on your WP website. After you install and activate it, go to the WordPress general settings in your admin panel and you will find a “Login URL” field at the bottom. So this is where you can set the custom name for your WP-login page.
When setting the custom URL, try to choose something with both small and large characters & numbers, so that it is secure. And choose something that you will be able to memorize as well. This is really important, because if you forget your login URL, you won’t be able to log into your WordPress website admin panel.
In my opinion hiding your WP admin login page is a good practice for every WP website that you’ll create.