wp-login.php security

I'm using htaccess to limit access to the admin folder but was wondering if anyone has come across a good plugin to to enable captchas on the wp-login page?

Thanks

 

i think it shouldn't be too hard to code in..

 

Yepp! Use Sabre

 

why not just password protect the file through cpanel?

 

Thanks, I'll definately check out Sabre and CPANEL passwords.

I did find a nice piece of code last night to limit access to the file based upon IP address which I have installed.

 

What exactly are you trying to stop? A brute force attack on your login page?

 

Yes, I'm hoping it will eliminate brute force attacks.

 

bluemanteam, can you tell me how to do that with htaccess please?

 

No need of any tough ways via htaccess.
Just rename your WP-ADMIN folder and the visitors wont be able to guess it,what is the New name and they just cant reach the wp-login.php page then..
Its too easy.

 

Just add these 3 lines into an htaccess file and place it into the wp-admin folder. Just replace the xx.xx.xx.xx with your IP address.

Order Deny,Allow
Deny from all
Allow from xx.xx.xx.xx

 

I can't believe it is just this easy. If you rename the WP-Admin folder, won't it affect the functionality of the blog.

Aren't there files that refer to files located in the WP-Admin folder? Wouldn't you have to update some WP files to point to the new name of WP-Admin?

 

Thanks very much bluemanteam.