Skip to main content
cPanel Technical Support has been heavily impacted by hurricane Beryl and our ability to respond to tickets has been hindered as a result. We appreciate your understanding and patience as we address these delays.

WP Toolkit and secure username

Comments

8 comments

  • cPRex Jurassic Moderator

    Hey there!  Can you get me more details on what you're trying to do?  I'm not completely sure what the issue is based on your description, but there is no way to alter the WP Toolkit login.

    0
  • toplisek

    We have an issue as Firewall detected real username for authentication which hackers use. We try to hide username as possible.

    An example:

    Event: Failed Login

    Website: 

    IP Address: 143.110.177.0

    Reverse IP: 143.110.177.0

    Date/Time: 28th December 2023 4:43 pm

    Message: User authentication failed: k2h1wc4waert9mrmaj

    It means they detected username value and we like to know how to detect and secure such malicious activity.

    0
  • cPRex Jurassic Moderator

    I'm not aware of any tools that would block or obscure the WordPress username.  This doesn't seem to be any different than a WHM login where *every* server always has the username of root.  Use a strong password and good security practices.

    0
  • toplisek

    No, it is not true.

    https://wordpress.org/support/topic/how-is-my-user-name-to-wordpress-getting-out-to-the-public/

      People can extract usernames from the URL of the website. WordPress itself is secured, and usernames are not considered private information.

    0
  • toplisek

    Is there a code to manage inside WP Toolkit?

    https://wordpress.org/support/topic/keep-the-author-name-but-remove-author-user-id-from-url/

    0
  • cPRex Jurassic Moderator

    Editing the author of a post isn't the same as the WordPress username.

    What specifically are you trying to change or keep from happening on your site?

    0
  • toplisek

    When creating a new user, WordPress automatically generates the nicename from the given username. Similarly to the username, you cannot change it later in the admin area, when editing your or another user’s profile.

    If you already used an URL friendly username during user registration, your username and nicename will be the same. As said earlier, this nicename is part of the Author URL, so your username can be guessed easily. Because of this security risk, or other considerations, you might want to change your Author Slug.

    0
  • cPRex Jurassic Moderator

    No, there isn't anything in WP Toolkit to address that.  You're welcome to open a feature request and I can get that to the correct team!

    0

Please sign in to leave a comment.