Skip to content
  • About WordPress
    • About WordPress
    • WordPress.org
    • Documentation
    • Support
    • Feedback
  • Ynlogge
  • Registrearje
WordPress.org
WordPress.org

Frysk

  • Themes
  • Plugins
  • News
  • About
  • Oer
  • Kontakt
  • Get WordPress
Get WordPress

Plugins

  • My Favorites
  • Beta Testing
  • Developers

This plugin hasn’t been tested with the latest 3 major releases of WordPress. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress.

Download

Chap Secure Password Login

By Enrico Rossomando (redsend)
  • Details
  • Reviews
  • Installation
  • Support
  • Development

Description

Whenever you try to login into your website, you can use this plugin to trasmit your password encrypted. The encryption process is done by the Chap protocol; this is particularly useful when you can’t use ssl or other kinds of secure protocols. By activating the ChapSecureLogin plugin, the only information transmitted unencrypted is the username; password is hided with a random number (nonce) generated by the session – and opportunely transformed by the SHA-256 algorithm.
In the first login there will be an error, but don’t worry is only a tecnical error. Indeed in the next login’s operation, if the values are correct, there will not be errors, but you give mind because the password will sended in unencrypted way.
If you want more details about this algorithm, check “Building a CHAP Login System”.
This is a zero-configuration plugin.

Enrico Rossomando (redsend) this is my blog about programming, gaming and startup > https://www.mrred.it

Installation

  1. Upload the directory chap-secure-login to the /wp-content/plugins/ directory (Example: /wp-content/plugins/chap-secure-login/ )
  2. Activate the plugin through the ‘Plugins’ menu in WordPress
  3. After this, have fun!!

Reviews

Breaks wp-admin login

molgeorge 4 maaie, 2019
I spent a few hours to figure this out: chap-secure-login breaks login to the wp admin panel.

DO NOT INSTALL-NOT MAINTAINED

lind33n 10 novimber, 2016
This is a great concept, but is no longer supported. Check under Last Updated before installing to see how far out of date it is. For me, I couldn't log in after the installation (the admin panel was inaccessible). This will disable your ability to log in with current versions of WordPress. If you install and get locked out, here is how I recovered my account. Log in with FTP and rename the CHAP folder (I added _BACKUP to the name). Then when you next log in, WordPress will disable the plug-in. Then you can log in and delete the plugin.

Poor Man's SSL?

gastronimo 3 septimber, 2016
Works as advertised, never any major problems. Thanks!

it does not allow login in certain conditions

3 septimber, 2016
This plugin locks certain users out, saying they have a wrong username and/or password. I have this problem when using firefox or IE, and combined with Wordfence plugin. After I deactivated this plugin, I had no problem to login again.
Read all 8 reviews

Contributors & Developers

“Chap Secure Password Login” is open source software. The following people have contributed to this plugin.

Contributors
  • Enrico Rossomando

Translate “Chap Secure Password Login” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.

Changelog

Version 1.6.6

  • With this new version 1.6.6 not only “Site Health” is fixed but also “Plugin Editor” (can be used now again to update files) BIG THANK YOU to Thilo Müller for patch file

Version 1.6.5

  • Update compatibility up to wordpress 5.4.1 (thanks to Thilo Müller)

Version 1.6.4

  • Update compatibility up to wordpress 5.0.2
  • Fix JS and image path (thanks to Hisham K)

Version 1.6.3

  • Update compatibility up to wordpress 5.0
  • Added the new icon for the wordpress plugin store

Version 1.6.2

  • Change plugin website url

Version 1.6.1

  • Change author information

Version 1.6

  • Now use a SHA-256 cryptographic hash function instead of MD5. Safer!

Version 1.5.2

  • Nothing special, just an icon to notify the encryption password!

Version 1.5.1

  • Fixed javascript bug “hex_md5() not found!”

Version 1.5

  • Fixed bug “login failed” with XMLRPC API used by many software like Windows Live Writer
  • Added “Change Log” section 🙂

Meta

  • Version: 1.6.6
  • Last updated: 2 years ago
  • Active installations: 1,000+
  • WordPress Version: 2.5 or higher
  • Tested up to: 5.4.10
  • Language:
    English (US)
  • Tags:
    adminloginpasswordprivacyusername
  • Advanced View

Ratings

See all
  • 5 stars 4
  • 4 stars 0
  • 3 stars 0
  • 2 stars 1
  • 1 star 3
Log in to submit a review.

Contributors

  • Enrico Rossomando

Support

Issues resolved in last two months:

0 out of 1

View support forum

Donate

Would you like to support the advancement of this plugin?

Donate to this plugin

  • About
  • News
  • Hosting
  • Donate
  • Support
  • Developers
  • Get Involved
  • Learn
  • Showcase
  • Plugins
  • Themes
  • Patterns
  • WordCamp
  • WordPress.TV
  • BuddyPress
  • bbPress
  • WordPress.com
  • Matt
  • Privacy
  • Public Code
WordPress.org
WordPress.org

Frysk

  • Visit our Facebook page
  • Visit our Twitter account
Koade is Poëzy.