A half and last year educated us that WordPress security should not be taken lightly by any means. Between 15% and 20% of the planet's high traffic sites are powered by WordPress. The fact that it is an Open Source platform and everyone has access to its Source Code makes it a tempting prey for hackers.
Cloning, as it applies to rename your login url to secure your wordpress website, is the act of creating an exact copy of your WordPress install. What is great is that with the correct software, you can do it in only a few clicks. There are a number of reasons. Here are only a few.
Strong passwords - Do what you can to use a strong password, alpha-numeric. Easy to remember passwords are also easy to guess!
For me it's a WordPress plugin. They are drop dead simple to install, have all the functions you need for a job such as this, and are relatively cheap, especially helpful hints when compared to having to employ someone to get this done for you.
In addition to adding a secret key to your wp-config.php document, also consider changing your user password into something that is strong and unique. WordPress will let you know the strength of your password, but include numbers, use letters, and a good idea is to avoid common phrases. It's also a good idea to change your password frequently - say once every six months.
However, I recommend that you set up the Login LockDown plugin instead these details of any.htaccess controls. That will stop login requests from being allowed from a certain IP address for an hour. You may get click into your admin panel whilst and yet you have protection against hackers if you do so.