Using the password protection will give you extra security layer of protection from brute force hacking attacks. Additionally, it’s also an easy way to password protect your entire site, without needing to create separate WordPress users for each visitor. When you enable the password protection, the user won’t be able to see anything – not even see the protected page – until he/she inserts the username/password. You can password protect the whole website, including the administrator pages; you can password protect the administrator pages; or you can password protect the WordPress login page. The plugin options include: Enabling/disabling the password protection to wp-login.php, WordPress admin pages. Modifying the existing users: you can change any .htaccess user’s password and remove the users. Create/modify an unlimited number of .htaccess users; Protect your whole site, making it accessible to only those who have the .htaccess user. This plugin is originally was based on .htaccess Site Access Control. That plugin was working fine but it was abandoned for years and not compatible with the latest WordPress. Most part of the plugin were refactored and translated.