Zero-Trust Security Solution
for WordPress
Block access to WordPress admin panel and important URLs to all internet traffic, allowing access only from devices you allow. And do this without needing a static IP address.
How it works?
- 1It is activated by installing a plugin on your WordPress site. When the plugin is active, access to your admin panel is completely disabled, and those who try to enter will encounter the "Access Denied" page.
- 2Your IP address is dynamically added to the ".htaccess" file of your Wordpress site via Protect Remote. In this way, the admin panel cannot be accessed from any IP address other than your IP address.
- 3As soon as you open the Protect Remote application, you are given access to your IP address and you can access your Wordpress admin panel.
| Protect Remote | Wordfence | Sucuri | AIOS | WPS Hide Login | Limit Login Att. | Login Lockdown | |
|---|---|---|---|---|---|---|---|
Static IP Blocking Static IP blocking is used to block manually entered IP addresses. However, this method is ineffective if attackers change their IP addresses and malicious bots attack from different IP addresses. | |||||||
Dynamic IP Blocking Dynamic IP blocking is the process of automatically blocking IP addresses belonging to known malicious bots received from some sources and services. | |||||||
Dynamic IP Allowing After all internet access is turned off, only dynamically collected IP addresses are allowed to access. It is the safest method. Since attackers will not have access, attacks cannot be carried out even if there are security vulnerabilities on the site. | |||||||
Login Page URL Changing It changes the URL address of the login page, making it harder for attackers to find the login page. However, this method does not prevent attackers from finding the login page and does not close other vulnerabilities in the system. | |||||||
Hiding Authors From WP API Hides author information that can be accessed via WordPress API. In this way, attackers cannot access data such as username and e-mail used to log in to the administration panel. | |||||||
URL / Page Blocking It is a method of blocking static addresses (URL). |
Frequently Asked Questions
Protect Remote is a service designed to secure your WordPress websites and is activated using a plugin. When the plugin is installed on your WordPress site, access to your admin panel is completely blocked, and anyone trying to access it will encounter an 'Access Denied' page. Through Protect Remote, your IP address is dynamically added to your WordPress site's ".htaccess" file. This ensures that access to the admin panel is only allowed from your IP address, blocking access from all other IP addresses. When you activate the Protect Remote application, access is granted to your IP address, allowing you to access the WordPress admin panel.
- The "/wp-admin/" directory should only be accessible to site administrators. In cases where attackers don't know the login credentials for the admin panel, security vulnerabilities in installed plugins can still allow remote code execution and potential harm to the site. Many attacks on WordPress sites occur through this method.
- Information such as your admin username can be discovered through URLs like "/wp-json/wp/v2/users", "/wp-json/wp/v2/users/1", and "?author=1". Once the admin username is known, bots can attempt to access the admin panel through trial and error, potentially gaining unauthorized access.
* These types of attacks are regularly carried out by bots.
- Information such as your admin username can be discovered through URLs like "/wp-json/wp/v2/users", "/wp-json/wp/v2/users/1", and "?author=1". Once the admin username is known, bots can attempt to access the admin panel through trial and error, potentially gaining unauthorized access.
* These types of attacks are regularly carried out by bots.
- Protect Remote can be easily integrated into your product and server without the need for a technical team.
- It is cheaper than alternatives because it does not require technical personnel, server and maintenance expenses.
- Unlike standard VPN solutions, your internet traffic does not pass through Protect Remote. For this reason, your speed does not slow down and the cost is lower.
- While all solutions on the market monitor your internet traffic or offer solutions to block attacks after they occur, Protect Remote definitely prevents attacks by blocking access to incoming addresses. While doing this, it does not monitor your internet traffic of users or your server.
- It is cheaper than alternatives because it does not require technical personnel, server and maintenance expenses.
- Unlike standard VPN solutions, your internet traffic does not pass through Protect Remote. For this reason, your speed does not slow down and the cost is lower.
- While all solutions on the market monitor your internet traffic or offer solutions to block attacks after they occur, Protect Remote definitely prevents attacks by blocking access to incoming addresses. While doing this, it does not monitor your internet traffic of users or your server.
Our WordPress plugin is written in PHP and is released as open source. You can review the code contained in the downloaded .zip file. No data related to your website is sent to Protect Remote servers. The plugin's purpose is to add IP address information received from Protect Remote APIs to the ".htaccess" file.
In case of disruptions due to issues with our systems or your server's internet connection, fallback plans (disaster scenarios) are activated, and the admin panel is made accessible to the public. This means that even in the event of service interruptions, you can still access your site's admin panel.
zero-trust security solution
Office
Harju maakond, Tallinn, Kesklinna linnaosa, Ahtri tn 12, 15551 Estonia
Contact Us
