Ok this ones been with me for months, so I'm finally asking it.

If "admin" is the most hacked UN for WP then why do we have it here at WA?

I've created another user for WP (as per instruction in the training way back) and given that full admin access to my WP dashboard. Subsequently then given "admin" limited use within my WP site So that if someone did break into it, the damage could be limited.

Why do we have to keep "admin" with full access too? I understand it has a cryptic PW, but I think that the option should be there to delete "admin" as a UN completely from the WA Websites and Hosting and allow us to add our own one. Better still, not give us admin to start with, when our sites are created.

It's an issue for me as I cannot login in and get full access to my site today. I've left a ticket at support.

Is there a new update at WA hosting stopping me from logging in differently?

Annie

Join the Discussion
Write something…
Recent messages
Wayne Wallace Premium
Good points if you want security change the admin and use strong passwords
Reply
AnnieB Premium
Hello Wayne, yes it is very important. If admin is your UN that's a good start for a hacker. It's one, if not THE most used UN. Probably the first one a hacker will go for.
Reply
CoachEd Premium
I am with you Annie ---Have a great night anyways ---!!!
Reply
AnnieB Premium
Hi there Ed. Nice to hear from you. I've barely been at WA for weeks now, so I'm finally getting around to connecting with you all again! I sure will have a good night. The sun is nearly gone here in Sydney as I write.
Reply
M W Mihalicz Premium
I think the base admin account has to be there due to design. Same as a PC computer has to have the default administrator account. You can rename the administrator account in windows and believe you just mask admin with an alias in WP.
Reply
AnnieB Premium
Hi Matt. I understand the need for someone with admin authority to have full control of everything and my new user does within my WP dashboard.

I don't sign in with 'admin' at all, as I've degraded it's access within my WP dashboard.

I'd really like to have something as hard to crack as our passwords. Like ??>lPO2* given to us when our sites are created,

I'm thinking of getting one of those plugins that has limited attempts you can make to sign in and then you get locked out for a while from your WP dashboard. As per my reply to Robet below, I think that we are fairly safe her at WA, but millions of sites get broken into ever day. You have to wonder how.
Reply
SfRobert83 Premium
What may be helpful is to log into your admin profile and put in a name (tony, Greg, Donna, etc), then all admin actions will have a name associated so to anyone who visits your page it will look like the admin profile is not active. Not to say they won't still try but it may help and you can change the admin password as often as you feel the need to.
Reply
AnnieB Premium
I understand where you are coming from Robert. I added a new user and gave them full access to my WP dashboard and not "Admin". Whoever, aka name you choose to have full admin access/control of your site, has to use the PW allocated at Websites and Hosting here at WA. Makes sense, so that support can help out and I'm fine with that. I just wish I could dump "admin as a UN completely!

However unlikely it is that someone should ever crack any of our passwords to our dashboard, having 'admin" as a UN is always the first UN they try. That's why I want to dump it.

Can't remember where I read it, or if it's true, but someone wrote that you will probably get your WP site hacked at least once - maybe more. Monitoring of our sites here with WA hosting seems real good, so at least we have that on our side.
Reply
Trialynn Premium
I think it may have something to do with resetting login. I could not log in one day, I knew my password, I had reset my user name. I asked for WP to send me the password. They reset the username to admin and gave me a password that worked. I had to reset everything to what it was. This is what happened to me - I do not know if there are other reasons.
Reply
AnnieB Premium
Hi Terea, support have me back into my WP dashboard again. I've gone in and out of my WP dashboard on two different browsers and now I can log in again with full access. I just want to get rid of admin as a UN completely. Seems strange to have it that's all.
Reply
Top