Sida Loo Bedelo URL Login-kaaga WordPress si loo helo Ammaan Wanaagsan

WordPress (WP) waa nidaamka maaraynta macluumaadka ugu caansan ( CMS ), holding 60.8% saamiga suuqa.

Si kastaba ha ahaatee, mid ka mid ah daciifnimadeeda ugu muhiimsan ayaa ah in badan oo ka mid ah hackers-ka WordPress ay yaqaanaan sida loo galo albaabka hore ee mareegaha WP.

Sida caadiga ah, URL- ka galitaanka WordPress ee ugu weyn waa yourdomain.com/wp-admin.php. Waxaa jira laba URL oo kale oo aad isticmaali karto kuwaas oo u weecin doona isla bogga gelitaanka caadiga ah:

  • yourdomain.com/admin
  • yourdomain.com/login

Waa maxay sababta aad ugu adkayn wayday tuugta iman kara inay helaan boggaga gelitaanka? Maqaalkani wuxuu ku tusi doonaa sida iyo sababta aad u bedesho URL- kaaga maamulka WordPress .

Maxaad u Bedeshaa URL Loginkaaga WordPress?(Why Change Your WordPress Login URL?)

In kasta oo la isticmaalayo URL-ka-soo-gal ee WordPress-(default WordPress login URL) ka ah waa hab fudud oo lagu xasuusto sida loo galo goobtaada, waxay sidoo kale u fududaynaysaa tuugada. 

Waxaad ugu yaraan hoos u dhigi kartaa tuugada adigoo u beddelaya URL- kaaga wax ay ku adag tahay inay helaan. Waxaa jira farsamooyin kala duwan oo jilayaasha xaasidnimada leh ay u adeegsadaan inay jabsadaan goobta WP, iyadoo weerarada xoogga ah ay yihiin kuwa ugu badan.

Weerar xoog leh(brute force attack) ayaa ah marka jabsiga isku dayo inuu galo goobtaada isagoo si joogto ah isku dayaya isku darka kala duwan ee isticmaalayaasha iyo ereyada sirta ah ilaa ay ka helaan midka saxda ah.

In kasta oo ayan mar walba guulaysan, isku dayadani waxay burburin karaan goobtaada haddii ay galaangal u yeeshaan. Mid ka mid ah taxadarka fudud waa inaadan isticmaalin ereyada sirta ah ee ay fududahay in la qiyaaso sida " 12345 " ama " abcde ". Sidoo kale, ha u isticmaalin admin magacaaga isticmaale.

Ma ogtahay in ay jiraan in ka badan 90,000 oo isku dayo jabsi(90,000 hack attempts) ah daqiiqadiiba maalin kasta? Haddi uu mareegahaagu yar yahay ama ha weynaado, isku dayga lagu jabsado goobtaada waa mid dhaw oo lama huraan ah.

Weerrarada(Brute) xoogga ah waxay xad dhaafiyaan xusuusta server-kaaga martigelinaysa iyagoo si isdaba joog ah u samaynaya codsiyada HTTP si isku xigta. (HTTP)Xitaa haddii jabsiga uusan awoodin inuu galo, tirada badan ee codsiyada ayaa ku filan inuu ku riixo server-ka webka oo ka baxsan awoodda wuxuuna burburin karaa goobtaada.

Haddi uu guulaysto, hackers-ku waxa uu gali doonaa dashboardkaaga WordPress maamule ahaan. Xalka ugu badan ee lagu taliyay si looga hortago dhammaan arrimahan waa in la beddelo URL-kaaga asalka ah ee WordPress oo (URL)loo(WordPress) beddelo mid cusub.

Ma u baahan tahay inaad gacanta ku beddesho URL Login-kaaga WordPress?(Should You Change Your WordPress Login URL Manually?)

Haddii aad isku daydo inaad isku daydo inaad si gacanta ah u beddesho boggaga galitaanka URL , waxaanu aad kuugula talinaynaa inaadan samayn. Inkasta oo aad si toos ah ugu geli karto faylasha boggaaga FTP ama habab kale, maaha fikrad wanaagsan sababahan soo socda awgood:

  • Mar kasta oo ay cusboonaysiiso WordPress , waxay dib u abuuri doontaa faylka bogga galitaanka, taasoo ka dhigaysa lagama maarmaan inaad mar kale beddesho URL- ka .
  • Waxa laga yaabaa inaad si badheedh ah u abuurto arrimo la xidhiidha shaqaynta goobtaada, oo ay ku jiraan khaladaadka shaashada ka bixida.
  • Inta badan waxaa jira cawaaqib xumo aan la filayn marka aad bedesho faylalka ubucda ah ee goobtaada, gaar ahaan marka aanad u baahnayn.

Isticmaal WPS Qari Login Plugin (Use WPS Hide Login Plugin )

WPS Hide Login waa plugin fudud oo WordPress ah si si badbaado leh oo hufan loogu beddelo URL boggaaga galitaanka WordPress .

Waa plugin iftiin ah oo kuu ogolaanaya inaad si badbaado leh oo fudud u beddesho foomka galitaanka bogga URL . Kuma darto xeerarka dib-u-qorista, wax ka beddelka faylasha, ama dib-u-magacaabin faylasha asaasiga ah.

Taa baddalkeeda, WPS Hide Login waxay ka hortagtaa codsiyada bogga waxayna ka dhigtaa boggaaga wp-login.php mid aan la heli karin. Hubi inaad qorto ama calaamadayso bogga galitaanka cusub si aad hadhow u gasho.

Sida loo rakibo WPS Qari Login(How to Install WPS Hide Login)

Waxaad ka soo dejisan kartaa plugin-ka( download the plugin) ama waxaad ka soo dhejin kartaa dhabarka dambe ee WordPress adiga oo raadinaya. Tag Plugins > Kudar Cusub(Add New) . Ka raadi WPS Qari Login(WPS Hide Login) ee Kaydka Plugin ee WordPress(WordPress Plugin Repository) .

Guji Hadda Ku rakib(Install Now) ka dibna Dhaq(Activate) -geli plugin-ka.

Sida loo habeeyo Plugin-ka(How to Configure the Plugin)

Si aad u gasho goobaha furaha, aad Plugins > Plugins rakiban(Installed Plugins) . Guji Dejinta(Settings ) hoosta WPS Hide Login plugin.

Hoos ugu dhaadhac qaybta WPS Qari Login(WPS Hide Login) .

Sida aad ku arki karto sawirka kore, waxaa jira laba go'aan oo ay tahay inaad sameyso.

  • URL galkaaga cusub
  • URL- ka dib u jiheynta ee dadka isku dayaya inay tagaan boggaga WordPress -ka ah(WordPress)

Markaad dooranayso URL- kaaga cusub , isticmaal xarfo iyo lambaro gaar ah oo random ah. Haddii aad isticmaasho wax si fudud loo qiyaasi karo, waxaad jabin doontaa ujeedada beddelka URL- ka galitaanka WordPress .

Doorashadaada xigta waa URL ee bogga dib u hagidda Mid talo soo jeedin ah ayaa ah inaad abuurto bog 404-qallad ah haddii aanad hore u lahayn mid.

Haddii aadan haysan bog 404 qalad ah(404-error page) , waxaa jira plugin ah taas.

Ama, waxaad dejin kartaa dib u jahaynta boggaga guriga. Marka la sameeyo, dhagsii Save Changes URL cusub si uu u dhaqan galo.

Tijaabi URL-kaaga Cusub ee WordPress(Test Your New WordPress Login URL)

Isku day inaad URL -kaaga asalka ah ku qorto baararka raadinta:

Yourdomain.com/wp-login

Haddii dejimahaagu sax yihiin, waa inaad aragto wax la mid ah sawirka hoose.

Haddii aad rabto inaad ku soo noqoto galitaanka WordPress ee asalka ah sabab kasta ha ahaatee, demi WPS Hide Login plugin.

Is Your Website 100% Safe Now?

Ha helin dareen ammaan oo been ah. Qaado taxadar kale marka lagu daro isticmaalka WPS Hide Login plugin.

Hackers waa kuwo aan naxariis lahayn. Had iyo jeer waxay raadiyaan habab cusub oo ay ku carqaladeeyaan mareegaha. Marka lagu daro bedelida URL- kaaga login ee WordPress , waa inaad raacdaa talooyinka amniga WordPress ee aasaasiga ah.

  • Ka dhig nooca WordPress , plugins, iyo mawduucyada mid cusub
  • Isticmaal Plugin-ka Amniga sida Malcare si aad si firfircoon uga hortagto bots-yada xun iyo ciwaannada IP-ga xaasidnimada leh
  • Ku rakib Shahaadada SSL
  • Isticmaal isku dayga xaddidan ee dib loo raray(the Limit Login Attempts Reloaded) plugin si loo xaddido isku dayga soo gelida
  • Ku kaydi faylashaada plugin sida BlogVault
  • Dooro erayga sirta ah ee gaarka ah iyo magaca isticmaalaha
  • Hirgeli furka xaqiijinta laba-factor sida Google Authenticator - WordPress Two Factor Authentication (2FA)

Ma jirto hab nacasnimo ah oo looga hortagayo tuugada inay galaan goobtaada. Si kastaba ha ahaatee, taasi macnaheedu maaha inaad u fududayso iyaga.

Sida aad arki karto, bedelida URL- ka galitaanka WordPress ee caadiga ah waa sahlan tahay in la sameeyo waana inaad. Maxaad u siisaa hackers-ka furaha albaabkaaga hore?



About the author

Waxaan ahay khabiir kombuyuutar, waxaanan ku takhasusay aaladaha iOS. Waxaan dadka caawinayay tan iyo 2009, waayo-aragnimadayda wax-soo-saarka Apple ayaa iga dhigaysa qofka ugu habboon ee ka caawinaya baahiyahooda tignoolajiyada. Xirfadeyda waxaa ka mid ah: - Dayactirka iyo cusboonaysiinta iPhones iyo iPod-yada -Rakida iyo isticmaalka software Apple - Ka caawinta dadka inay helaan apps-ka ugu fiican ee iPhones iyo iPod-yada - Ka shaqaynta mashaariicda onlaynka ah



Related posts