Since the mass brute-force-attacks against WordPress sites, security is the major concern for WordPress users. A brute force attack, also known as botnet attack is a highly distributed attack using tens of thousands of unique IP addresses through a computer program. This means our old school security plugins like limit login attempts has become vulnerable for WordPress sites. So here’s a Authy for WordPress; Google Authenticator Alternative.
Cloudflare. The web performance and security company claims it recently noticed significant attack being made on large number of WordPress blogs. Web hosting company Hostgator also claimed that there were 90,000 IP addresses involved in this attack. Although these kind of attacks are well advanced, you can avoid it by adding two-factor security system. Today i’m going to share Authy for WordPress, Google Authenticator Alternative plugin.
What is Two-Factor authentication?
Two-step authentication is a simple security feature which adds an extra layer of protection against hackers. What it does is, after entering your username and password it’ll ask you to enter 6 digit unique authentication codes which were sent via SMS or mobile app. I use this feature on my Google account. I highly recommend you to use it too, because if a hacker gets hold of your email account, he can ruin your social life.
How Two-Factor authentication works?
This Two-factor or Multi-factor authentication system works on Time-based One-time Password Algorithm (TOTP). What it does is it generates different password every 30 second. So it makes eventually impossible for attackers to encrypt the passwords.
- Also Check: Top 6 Free WordPress Typography Plugins I Like
Authy for WordPress : Google Authenticator Alternative
How to enable Authy for WordPress plugin:
Although there is a similar plugin called Google Authenticator for self hosted WordPress users, the mobile app does not support all phones and there is no SMS feature. But with Authy for WordPress plugin, users can receive their codes through SMS. So it is the best google authenticator alternative plugin.
Let’s install Authy for WordPress plugin.
Step 1: login to your WordPress dashboard>plugins>add new.
Search for Authy for WordPress plugin. Then click install and activate.
Step 2: you need to get an API key from authy.com. For that you need to sign up for an account. After signing up, find an API key. Return to plugin setting and enter API key.
Now, visit profile setting on your WordPress dashboard and click Manage Authy connection (see below image).
Now, Just install Authy application on your smart phone and activate. You’re done.
However, To receive Authy codes through SMS, you need to upgrade to starter plan. It is free but you need to provide your credit card details for verification process.
Is it safe?
Absolutely safe. Authy for wordpress plugin is developed by Authy.com. Big web security companies like Cloudflare is integrated with Authy. So there is no need to worry about security.
What to do if your phone is lost or got stolen?
Nothing to worry. You can easily disable the plugin through your Cpanel. Just delete or rename the Authy for WordPress plugin folder; this folder can be found in wp-contents/plugins. And you can also change the phone number on authy.com anytime.
The Internet isn’t the same as before. Hackers and attackers are using new and sophisticated methods to break the security systems. However, by installing a two-factor security system, we can eliminate almost 90% of hacking attempts. So use this Authy for WordPress as Google Authenticator Alternative plugin.