Author: S.Byrne (25 Jun 14 2:41am)
If you're not running WordPress, I think redirecting /wp-login.php is worth doing. The /wp-login.php link is used to register to post a comment on many WordPress installations, so spammers are likely to test this to try registering, particularly if their spider can't find any registration link on the site (e.g. a site that does not allow registration).
I think the same holds true for Joomla sites. On one blog I look after, I actually placed the honey pot on /administrator and put fake 'Register' links on the site pointing to it, using CSS to hide the links. This did a double-purpose, it catches any bot trying to register (the blog doesn't allow registration anyway) and reduced the number of 404 errors in the logs as this link was fairly often tested, probably because the blog use to be a Joomla site which used that URL for login.