Use WP Ghost with Nginx Hosting Without Editing Config Files

Login Security
Table of Contents

In this tutorial, we will guide you through the process of using the WP Ghost plugin with Nginx hosting, ensuring your site remains secure and functional without the need to modify the nginx.conf file.

Fortunately, WP Ghost is designed to operate seamlessly on different server types, including Nginx, without requiring changes to the server configuration files.

Here’s how you can maintain your website’s security with WP Ghost on an Nginx server.

Use Built-in Features of WP Ghost

The built-in Features of WP Ghost offer several built-in functionalities that don’t require server configuration.

custom login
  • Custom Login, Lost Password, and Signup paths can be set directly within the plugin.
  • Brute Force protection for login and author pages helps prevent unauthorized access attempts.
  • The Firewall feature monitors and blocks suspicious traffic.
  • The Hide Version function conceals your WordPress version number from public view.
  • Two-Factor Authentication (2FA) adds an additional security layer at login.

Use preset security settings

Use a preset security settings that only activates non-rewrite rules features

no config rewrites security preset
  • Go to WP Ghost > Backup / Restore > Preset Security
  • Select the Minimal (No Config Rewrites) security preset
  • Load the preset and follow the instructions is required

The login path will be set as /newlogin by default, but it can be changed after loading the preset.

Alternative to security preset loading option

restore no rewrite config backup
  • Download no_custom_core_backup.txt file, which is a backup created by WP Ghost.
  • Restore your settings from WP Ghost > Backup/Restore.
  • After restoring, the default custom login path will be set to /newlogin. If needed, you can change this path according to your preference.

Testing the Plugin

wp-login page logo
  • Test the login functionality to ensure the custom path is working.
  • Verify that other features like Brute Force protection and 2FA are operational.
  • Check the Firewall’s activity log to confirm that it’s actively monitoring your site.

By following this guide, you can successfully use WP Ghost with any kind of hosting.

For any further assistance or queries, do not hesitate to contact the plugin support team.

Keep your WordPress site secure and running smoothly, regardless of the hosting infrastructure changes.

Tagged: