How to Disable User Registration in WordPress

How to Disable User Registration in WordPress

In WordPress by Fathi Arfaoui4 CommentsLast Updated: October 17th, 2015

If you just installed your first WordPress blog, you will get some if not lots of email notifications from WordPress about new user registration on your blog. That seems a good news for newbies, they think that their blogs become popular, and people want to subscribe, but the truth is completely different.

Those new subscribers are spammers who want to send you their offers, and in other cases, they want to hack your site in the near future. So stop letting them do what they want from the beginning, and learn how to disable user registration in WordPress.

The big question that you want to ask is how people subscribe to your blog while you never offer any subscription option. Well, they use your WordPress admin login page to register. There is a link that let people subscribe to your blog. The good news is that they will just be as subscribers and can’t access, or modify anything. But, as I said, it can be a way to send you hidden codes by anyway.

Read also: Best WordPress membership plugins.

Disable WordPress user registration

You can easily disable the new user registration from your dashboard. Just click Settings and in General Settings, you can uncheck the registration option:

How to Disable User Registration in WordPress

After clicking the ”save changes button, your blog will no longer show that subscribe link for spammers. This option is good for regular blogs, but if you have a membership website or blog, then disabling the new user registration option is not the case. In that situation, you need to let your new members subscribe but with extra security and setting options.

You can use plugins such as Stop Spammers or Wordfence security to white list IP address or even blog a full IP address range. They let you do many advanced options to protect your website from spammers. But you have to spend some time reading their setting page and configuration to ensure the right configuration that protects your website.

If you think that you have something that generate automatic user registration or similar threads. Then, you should scan WordPress plugins and themes for malware, but please remember that you should protect your blog files and details, and never share them online for any reason.

If you need help, for example, never share your error messages if they include details, and information that can be used to access your site files and directories.

Please make sure to use the minimum spam protection plugins as possible. Just choose one or two as the maximum to avoid problems, some plugins won’t work together on the same website. As a result, you will risk your website and get the minimum protection instead of the best.

Sometimes the good plugins will lose their features if other plugins work on the same task. A theme issue with many similar plugin functionalities will make your website slower than before, and even, it can stop the server work properly with a high level of HTTP request for the same task.

You need to protect your blog for many sources and not repeating the same thing many times. So, use the two above plugins and your website or blog will be in safety.

Fathi Arfaoui: A Physicist, Blogger, and the founder and owner of Trustiko.com. He shares Business, Blogging, WordPress, Web Safety, and Blogging tips to build better websites and blogs. Also, he shares online marketing strategies and recommendations.

Comments

  1. While that method works for ‘normal’ people, it won’t stop hackers and spammers from registering. All they would do is go directly to this page on your site:

    /wp-login.php?action=register

  2. I don’t have that option.

    Please help! I think I’m hacked.

Leave a Comment