So if spammer has your wp-admin link then you are vunernable to the DDOS attack which is always likely to happen in the word-press account.
As per your saying
once registered, there is no need.
Also then can you please clarify the purpose of disable the option for the administrator and others. what does it do?
I think you need to make this more usable rather giving excuses.