Chap Secure Password Login
Enrico RossomandoWhenever you try to login into your website, you can use this plugin to trasmit your password encrypted. The encryption process is done by the Chap protocol; this is particularly useful when you can’t use ssl or other kinds of secure protocols. By activating the ChapSecureLogin plugin, the only information transmitted unencrypted is the username; password is hided with a random number (nonce) generated by the session – and opportunely transformed by the SHA-256 algorithm.
In the first login there will be an error, but don’t worry is only a tecnical error. Indeed in the next login’s operation, if the values are correct, there will not be errors, but you give mind because the password will sended in unencrypted way.
If you want more details about this algorithm, check “Building a CHAP Login System”.
This is a zero-configuration plugin.
Enrico Rossomando (redsend) this is my blog about programming, gaming and startup > https://www.mrred.it
Breaks wp-admin login
By molgeorge on May 4, 2019
DO NOT INSTALL-NOT MAINTAINED
By lind33n on November 10, 2016
Poor Man's SSL?
By gastronimo on September 3, 2016
Works as advertised, never any major problems. Thanks!
it does not allow login in certain conditions
By (horiamar) on September 3, 2016
This plugin locks certain users out, saying they have a wrong username and/or password.
I have this problem when using firefox or IE, and combined with Wordfence plugin.
After I deactivated this plugin, I had no problem to login again.
Version 1.6.6
- With this new version 1.6.6 not only “Site Health” is fixed but also “Plugin Editor” (can be used now again to update files) BIG THANK YOU to Thilo Müller for patch file
Version 1.6.5
- Update compatibility up to wordpress 5.4.1 (thanks to Thilo Müller)
Version 1.6.4
- Update compatibility up to wordpress 5.0.2
- Fix JS and image path (thanks to Hisham K)
Version 1.6.3
- Update compatibility up to wordpress 5.0
- Added the new icon for the wordpress plugin store
Version 1.6.2
- Change plugin website url
Version 1.6.1
- Change author information
Version 1.6
- Now use a SHA-256 cryptographic hash function instead of MD5. Safer!
Version 1.5.2
- Nothing special, just an icon to notify the encryption password!
Version 1.5.1
- Fixed javascript bug “hex_md5() not found!”
Version 1.5
- Fixed bug “login failed” with XMLRPC API used by many software like Windows Live Writer
- Added “Change Log” section 🙂
- Upload the directory
chap-secure-login
to the/wp-content/plugins/
directory (Example: /wp-content/plugins/chap-secure-login/ ) - Activate the plugin through the ‘Plugins’ menu in WordPress
- After this, have fun!!
Reviews
3.1 out of 5 stars
- Version: 1.6.6
- Last updated: 4 years ago
- Active installations: 900
- WordPress version: 2.5
- Tested up to: 5.4.16
- PHP version: false