WordPress Security.

Do you log in as “admin” on your WordPress blog?

If you do log in to your WordPress Blog as ”admin”, you should change that!

I will tell you exactly how to do it in this blogpost, but first I will tell you why you should do it!

When you upload and start a WordPress blog, WordPress will, as default, name the administrator user account as “admin”.

A lot of WordPress users don’t change this, and keep the “admin” log in.

The problem with this is: there might be people out there wanting to gain access to your blog, and they would just need to keep using the “admin” user name with a bunch of passwords combinations. This is called brute force attack, and with automated tools it works quite often. They know, that many WordPress users log in as “admin”.

So I would highly recommend that you change this if you haven’t already done that! And – it’s very easy!

When you are logged in, go to the Dashboard>Users>Add New. Now you can add yourself as a new user. Give yourself a new username, and remember to make you Administrator!

IMPORTANT!!

As you choose your new user name, make sure that it is not similar to the name you display publicly on your blog, and you use to sign your posts!  If you sign your posts as My Name, for instance, naming the administrator user as “My” or “myname” wouldn’t help. Choose something that others won’t be able to guess easily!

Then log out, and log in with that new user and delete the old “admin” user. Don’t worry if you have many posts written as ”admin”, WordPress will ask whether you want to delete them or re-assign them to a new user (choose the latter obviously).

I hope you found this post helpful!

WordPress Ressources: