Hi
I recently set up a a wordpress blog and had a lot of people telling me that I should password protect the /wp-admin folder. There is even a plugin called AskApache Passpro that sets up the .htaccess files for you.
The thing is, when a user first logs in after he/she registers they are redirected to the profile page which located at /wp-admin/profile.php and they are presented with the admin login window.
I would have thought that this was a common enough problem, since everyone suggests to protect this folder but my 2 wordpress support forum posts (bumped three times so that could be called 6), my email to the AskApache guy and googling and reading readme’s and blogs has turned up nothing.
Nada.
Nary an typed syllable.
I wonder has anyone had this problem? It has to be common – I am only using the software with default settings etcetera.
Ed
This will prevent access to wp-admin folder from all IP addresses except those mentioned above.
Not that you have mentioned this, I must go out and do this on my blogs – My luck, if I don’t do it now, I’ll wish I had
BTW – After 5 posts, you can put your site’s url in your signature. You’ll find that valuable
Best regards,
Jim.