Cloudflare is a great way to protect and speed up your WordPress website. I use their services as well for many years now and I’m very satisfied with their offerings.
Here is a small (but possibly very important!) tip to maximise the security of your WordPress login page if you use Cloudflare as your DNS provider.
Add a new page rule for your login page. For example this will be example.com/wp-login.php. Then, add the following settings for that page:
- Browser integrity check: on
- Security level: I’m under attack
- Automatic https rewrites: on (if your site has SSL enabled)
This may seem like a very small thing to do, but it will increase your WordPress security greatly.