Joss Posted January 6, 2016 Author Share Posted January 6, 2016 Yes, I had a few fckeditors as well. As I said, if those are the files that intruders are looking for to find vulnerabilities, it is a warning list of files and locations of files that you should probably avoid! 2 Link to comment Share on other sites More sharing options...
OrganizedFellow Posted January 6, 2016 Share Posted January 6, 2016 Just for interest, I wonder how many PW users rename their admin? I always do, normally something relating to the site. So, if I had joss.com (which I don't!) I would create jsadmin or something. I vary the system quite a lot, but useful to keep it vaguely memorable for client sites. The ability to rename admin I think is a particularly neat security feature in PW. It might not be uber-powerful, but is so simple and just creates a nice little hurdle for bots to trip over. I always rename mine, and funny enough, I rename is something relating to the site, like Joss. A restaurant I did has their admin named 'thechef'. A tavern is named 'barkeep'. Link to comment Share on other sites More sharing options...
Peter Knight Posted January 7, 2016 Share Posted January 7, 2016 mydomain.com/wp-admin isn't the default url domain.com/wp-admin.php In PW I can only setup page urls like this domain.com/wp-admin/ Link to comment Share on other sites More sharing options...
Mike Rockett Posted January 7, 2016 Share Posted January 7, 2016 isn't the default url domain.com/wp-admin.php wp-admin is an actual directory, so it'll be domain.com/wp-admin/. Link to comment Share on other sites More sharing options...
Recommended Posts