Usernames to Block

Remember when you were a kid, and you needed a password to get into the tree fort? Not a bad security step. If you recognized the person who wanted to get in to your fort and they knew the password, that person was welcomed in. If they didn’t have the password – and they weren’t bigger than you – they didn’t get in. If you didn’t recognize them, there’s no way they’d get in, even with the password. Your website can work in much the same way: no username, no password, no entry.

One of my favorite plugins in WordPress is WordFence. Even the free version of the software has some amazing features. You can easily limit the number of login attempts as well as block a user after a certain number of attempts (10 or 20 is what I recommend). In the tree fort, if you didn’t recognize someone, it didn’t matter if they had the password, they weren’t welcomed in; we can do the same through WordFence. If someone uses a certain username, we can automatically lock them out.

One username to block right away is ‘admin’. These usernames are all set up by either your developer who built the site or you yourself when you created the various user accounts. If you never set up an account with the username of ‘admin’ – which you should never do, by the way – no one should ever be looking to login with that username. ‘Admin’ is one of the first names that spammers and hackers will use in a brute force attack to gain access to your site. Block the use of the ‘admin’ username, and then block the IP that they’re using: quick and easy.

The other names you should block are any names that a spammer or hacker attempts to use. With WordFence, the plugin will send you an email anytime a user is locked out because they failed with a username and password 10 times (or whatever you have it set to). An awesome feature of WordFence is that they’ll also tell you what username was used and where this user was logging in from. I received one of these emails from a client’s site and it said that ‘clientsDomainName’ had attempted login 10 times. I went in to the client’s WordFence settings and added ‘clientsDomainName’ to the list of blocked names. Now any time a spammer or hacker attempts to get in with that username, they’ll be blocked immediately. Whenever I receive an email like that, I will always login and block that username.

If you are a Full Scope Creative client on Security Essentials Hosting, you enjoy the benefit of having your site monitored by us. We maintain all of those emails from WordFence for you and will add any of those username attempts as soon as we see them.

When I was a kid, keeping my tree fort free of unwanted visitors was a top priority. Our websites shouldn’t be any different. We know to keep passwords safe and secure, but there’s also work to be done on the usernames as well. Thankfully, with WordFence for WordPress, we’ve got a lot of great tools at our disposal.

Recent Blogs

Blog Categories
Monthly Blog Archive
Ready to discover how we can help make your website and marketing more successful?
Contact Us

Marketing Made Simple

Insights from Full Scope Creative

Our thoughts on website design, graphic design, marketing, SEO, website hosting, branding, business management, and more here in the Full Scope Creative blog!

Get a FREE Green Bay web design consultation today!

Insights, Tips, and Strategies for Small Business Success

Our blog is packed with expert advice on website design, SEO, marketing, branding, and more. Whether you’re looking to improve your website’s performance, boost your online presence, or streamline your business’s digital strategy, you’ll find valuable insights and actionable tips right here.

Using Google Analytics

Google Isn’t Just a Search Engine, It’s a Measurement Tool

January 17, 2026

Google is more than a place people search. Behind every query and click, it provides insight into how customers find your business and what they do next. Tools like Google Analytics, Google Search Console, and Google Business Profile help reveal visibility, behavior, and performance so businesses can make clearer decisions instead of guessing.

Read More »

Are There More Search Engines Than Just Google?

January 16, 2026

“Google it” has become shorthand for searching the internet, but Google isn’t the only search engine out there. From Bing and Yahoo to privacy-focused options like DuckDuckGo, there are real alternatives people use every day. This article breaks down the strengths, weaknesses, and why Google still dominates how businesses think about SEO.

Read More »
Confused user on a computer

Makes It Easy for Clients to Take the Next Step

January 13, 2026

A good website removes friction and makes it easy for visitors to take the next step. When users know where they are, what’s available, and what happens next, they act with confidence. Clear service pages, helpful FAQs, and simple calls to action show respect for a visitor’s time and attention.

Read More »
DNS servers around the globe

What to Expect During DNS Propagation

January 9, 2026

DNS propagation can be one of the most confusing parts of updating a website or email system. During this window, websites and email can appear slow, broken, or inconsistent. This behavior is normal and temporary. Knowing what to expect during DNS propagation helps reduce stress and prevents unnecessary panic while the update works its way through servers worldwide.

Read More »

Is Your Website Causing Customers to Bounce?

January 5, 2026

Visitors decide whether to stay on your website in seconds. When a site feels confusing, cluttered, or hard to use, people leave without clicking, reading, or reaching out. A high bounce rate is rarely about pricing or competition. It’s usually caused by unclear structure, poor mobile experiences, and pages that make users work too hard.

Read More »
Improving a webpage for better SEO

How to Improve SEO Rankings for Service Pages

January 2, 2026

Service pages don’t rank the same way blog posts do. Improving their SEO takes more than keywords and backlinks. It requires clear focus, stronger structure, trust signals, and supporting content that works together. This article breaks down practical, page-level improvements you can make to help your service pages perform better in search results.

Read More »

2025 Blog Recap: What We Shared This Year at Full Scope Creative

December 31, 2025

In 2025, we shared a lot on the Full Scope Creative blog. Those posts came from real questions, real projects, and real conversations with small business owners. This recap looks back at what we covered, why those topics mattered, and how steady, practical education continues to shape how we support our clients.

Read More »

Do I Need Hosting If I Use WordPress?

December 31, 2025

If you use WordPress, you still need website hosting. WordPress is the tool that manages your content, while hosting is what makes your site accessible online. Without hosting, your website has nowhere to live. This article explains how WordPress and hosting work together and why many businesses choose managed hosting with Full Scope Creative.

Read More »
Ready to discover how we can help make your website and marketing more successful?
Contact Us

Chris is very efficient, easy to work with and does a outstanding job.

~ Tina Weiss,
Shear Sports