Hello,
You can use WPS hide login plugin to hide the admin panel path. I recommend adding a recaptcha to the login and registration form. Also connect your site to cloudflare and use the firewall.
Don’t forget to secure SSH via Cyber panel dashboard: create another user with Sudo privileges and lock root. In this case, everyone trying to access your server via SSH as root will “hit the wall”, while you will be able to log in with a newly created user as an administrator.
@peakminute Could you please explain a bit more how to do this? I currently login to cyberpanel with the default admin user and ssh with root user. I’d like to close those off and use a custom user for each, as you’ve suggested.
Whoever uses Linux knows Root is a superuser, which got the highest privileges.
Does not matter if you will protect your WordPress or Cyber Panel dashboard login. If you’ve got access from the server side you will be able to do whatever you want.
Guess what: all those bad people (hackers) know that as well… By figuring out the correct username it is halfway job done for exploiting your server.
That being said go to the terminal and create another user, and assign sudo privileges for that user.
Login to the server via terminal ssh root@server-IP-address
Create new user (you will be prompted to create a new password) adduser username
Add user to “sudo” group usermod -aG sudo username
Test sudo access by connecting to the server using new credentials and running the command sudo whoami
The output shoud be “root”
When everything is done login to the Cyber panel dashboard/security tab / secure SSH and there is a slider to turn off the root user.