Installation & Setup

Download the Plugin

The very first step is to download Hide My WP Ghost from your account

Download

Connect to your account and download Hide My WP Ghost premium plugin

Download Plugin

Hide My WP Ghost Free

If you want to test the FREE version of Hide My WP Ghost you can download the plugin from https://wordpress.org/plugins/hide-my-wp/

Requirements

To install Hide My WP Ghost you need at least WordPress 4.1 and PHP 5.6.

Server Requirements

You can install Hide My WP on Apache Server, Nginx Server, LiteSpeed Server, IIS Windows Server.

Don’t forget to read the setup instruction for each server type.


Upload the plugin into WordPress after you download the archive

  1. Log In as an Admin on your WordPress site.
  2. In the menu displayed on the left, there is a “Plugins” tab. Click it.
  3. Now click “Add New”.
  4. There, you have the “Upload Plugin” button
  5. Upload the hide-my-wp.zip file.
  6. After the upload it’s finished, click Activate Plugin.
  7. In the Activation panel, enter the email you used for buying the plugin
  8. Click to activate.

Activate the plugin

Once you installed the plugin you will be redirected to the Activation panel. Enter the email you used for buying the plugin and click the Activate button.

Activate Hide My WP Ghost

Once you’ve activated the plugin, you will be redirected to the Hide My WP > Permalinks page.


Setup the plugin in Safe Mode

If you have Hide My WP Ghost Free you will select the Lite Mode

  1. Go to Hide My WP > Permalinks and Select the Safe Mode from the Levels of security panel.
    All paths will automatically change with the safe ones.
  2. You will have to remember the new login path because you will have to access it every time you connect to your website.
    You can customize the paths but leave both wp-admin and admin-ajax.php unchanged.
  3. Scroll down and click on the Save button.

Note! If Hide My Wp Ghost can’t write the rewrite codes on your config files (.htaccess for Apache, nginx.conf for Nginx, web.config for IIS), you will be asked to do this manually. Follow the instructions and click the button “Okay, I set it up

Now, you are asked to reconnect to your dashboard to access the new paths.

Change wp-admin path and wp-login path

Copy the Safe URL

Don’t forget to copy the safe URL before re-login to rollback the settings in case of a compatibility error.

After you copy the safe URL, click on the button Yes, I’m ready to re-login and you will be redirected to the login page.


Setup the plugin in Ghost Mode

  1. Go to Hide My WP > Permalinks tab and Select the Ghost Mode from the Levels of security panel.
    All paths will automatically change with the ghost ones.


  2. You can now change the wp-admin path and hide the default wp-admin path in WordPress. You can also choose to hide the new admin path for visitors.


  3. Customize the wp-login path now and hide the wp-login and wp-login.php paths from visitors. This will increase website security and prevent brute force attacks on the login page.


  4. (Optional) You can customize the paths: lost-password, register, logout, activation, wp-content, wp-includes, wp-content/uploads, comments, author, etc. if you don’t want to have the predefined Ghost paths.


  5. Scroll down and click Save.

Note! If Hide My Wp Ghost can’t write the rewrite codes on your config files (.htaccess for Apache, nginx.conf for Nginx, web.config for IIS), you will be asked to do this manually. Follow the instructions and click the button “Okay, I set it up

Now, you are asked to reconnect to your dashboard to access the new paths.

Now, click on the button “Yes, I’m ready to re-login”  to apply the new paths. Reconnect to admin with the new paths and purge the cache from your cache plugins and the server cache to see the changes in the frontend.

  • Note: For Nginx server, you need to restart Nginx after each customization.
    For Linux servers use the command line:
    sudo nginx -s reload
  • Note: For Apache server, you need to make sure you set the AllowOverride All option for your current directory in httpd.conf or apache2.conf.
    Read more about it: https://stackoverflow.com/questions/18740419/how-to-set-allowoverride-all

Was This Article Helpful?