Login Encrypt is a security plugin. It uses a complex combination of DES and RSA.
It was first developed by ELSERVER for securing login in the hosting control panel, and then released as a WordPress plugin.
The way it works (fast explanation):
- A Javascript appended to the wp-login generates, each time a user logs in, a unique DES key. Using that key, the password of the user is encrypted.
- The Javascript encrypts the DES unique key using the RSA public key (generated when the plugin is activated).
- The encripted password and the encrypted DES unique key are sended to the server.
- A hook when login in checks if a encrypted DES unique key is received. If does, decrypts it using the secure RSA private key.
- Then, decrypts the password using the DES unique key.
This section describes how to install the plugin and get it working.
- Upload
login-encrypt directory to the /wp-content/plugins/ directory
- Activate the plugin through the 'Plugins' menu in WordPress
- You're done!