Protect user 1
It's highly recommended that you protect user with uid 1, i.e. the one who has life and death rights on your Drupal installation.
Disallow user 1 deletion:
- Install Protect Critical Users
Disable user 1:
- Be sure to have at least one user (other than uid 1) that has the permission
administer usersfrom user module. - Login with this account (again other than uid 1)
- Go to Administer > User management > Users
- Edit user with uid == 1
- Set Status to Blocked
- Click Save
Now user 1 can't login to your website. No more risk for password discovery for this account.
Please note that you should check enabled modules code, sometimes they use user 1 to achieve some tasks. And this could break some modules features. So use with caution.
Useful resources:
by jchatard
