{"id":446,"date":"2014-04-28T18:42:53","date_gmt":"2014-04-28T06:42:53","guid":{"rendered":"http:\/\/mdickinson.dyndns.org\/php\/wordpress\/?p=446"},"modified":"2014-04-28T18:42:53","modified_gmt":"2014-04-28T06:42:53","slug":"changes-i-always-make-to-wordpress","status":"publish","type":"post","link":"https:\/\/mdickinson.dyndns.org\/php\/wordpress\/?p=446","title":{"rendered":"Changes I always make to WordPress"},"content":{"rendered":"<p>\nPosted for my re-use; so I can just cut\/paste from this post after every WordPress update.\n<\/p>\n<p>\nDue the the number of access requests for wp-login.php from ip-addresses that are clearly not authorised to use my wordpress installation I always insert at the top of the wp-login.php script the below lines to ensure even if someone does find wp-logon\/php they cannot use it.\n<\/p>\n<pre>\r\nif ( ( $_SERVER['REMOTE_ADDR'] != \"192.168.1.187\" ) && ( $_SERVER['REMOTE_ADDR'] != \"192.168.1.188\" ) ) {\r\n   echo 'wp-login can only be accessed from the internal network, you are on '.$_SERVER['REMOTE_ADDR'].'.<\/p>';\r\n   echo '...a link to the main website page here...';\r\n   die();\r\n}\r\n<\/pre>\n<p>\nThis ensures that even if someone gets past my rewrite blacklist scripts they still cannot logon to wordpress unless; unless they are physically using one of my two desktops of course.\n<\/p>\n<p>\nPosted for my reference as every time I update wordpress, and it installs a new wp-login.php script, I have to redo these changes&#8230; as I have just had to do again, sigh.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Posted for my re-use; so I can just cut\/paste from this post after every WordPress update. Due the the number of access requests for wp-login.php from ip-addresses that are clearly not authorised to use my wordpress installation I always insert &hellip; <a href=\"https:\/\/mdickinson.dyndns.org\/php\/wordpress\/?p=446\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[],"class_list":["post-446","post","type-post","status-publish","format-standard","hentry","category-my-nux-thoughts-and-notes"],"_links":{"self":[{"href":"https:\/\/mdickinson.dyndns.org\/php\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/446","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mdickinson.dyndns.org\/php\/wordpress\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mdickinson.dyndns.org\/php\/wordpress\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mdickinson.dyndns.org\/php\/wordpress\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/mdickinson.dyndns.org\/php\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=446"}],"version-history":[{"count":3,"href":"https:\/\/mdickinson.dyndns.org\/php\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/446\/revisions"}],"predecessor-version":[{"id":449,"href":"https:\/\/mdickinson.dyndns.org\/php\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/446\/revisions\/449"}],"wp:attachment":[{"href":"https:\/\/mdickinson.dyndns.org\/php\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=446"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mdickinson.dyndns.org\/php\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=446"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mdickinson.dyndns.org\/php\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=446"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}