Will having a .htaccess file in wp-admin area effect classipress users?
Hi,
Recently my classipress site was attacked using a malware trojan or vulnerability injection code somewhere on the site. Either way, it effected my site badly for few days and most likely lost some customers at it since i have a few hundred visitors to my site every few days. My site host had a backup and was helpful enough to get it restored and cleaned the malware and any other unwanted files on the server. Nevertheless, it has given me a good lesson to boost my wordpress security and also classipress if there is any loopholes in the theme.
Since I am firstly concentrating on wordpress, I have installed a plugin which I found was pretty good in letting me know my site's weekness and what to do to protect it. I have corrected a few vulnerabilities, but have one last one to do. However I want to double check if this would cause any troublesome for people posting ads on the site. The suggestion from the plugin is:
"The file .htaccess does not exist in the
wp-admin section. Read more why you should have a .htaccess file in the
WP-admin area here. "
So I could go ahead and create a .htaccess file to create an extra layer of server login before the classipress wordpress login at the
wp-admin area. But if I do that, wouldnt all users that registers on the site have to enter a password for a server login pop up too ? Get what I mean?
I just would like some clarification from the Classipress developers on this. I would like to protect login for admin users only. Is there a way to do this without effecting any login or registration process for contributor users?
Thanks