Guides
Whitelisting your IP address for login pages on WordPress ensures that only your IP address can access the login page. It is by far one of the best security methods for preventing brute force attacks on your website. Previously I have shown how to whitelist a single dynamic DNS address which is great security practice … Learn more…
Monit can be used to monitor your services on your VPS or dedicated server. You can use Monit to make sure nginx is always running in case it halts or freezes up – note this is very rare but it is better to be safe than sorry. Monit will check which port nginx is running on … Learn more…
I have helped many users speed up their sites by implementing server-side security to prevent XMLRPC and wp-login.php attacks. CloudFlare have blogged about XMLRPC.php as an attack vector. Basically, hacker bots scan for WordPress or WooCommerce sites and will try a senseless amount of password attempts over and over again. This can lead to your system … Learn more…
Whitelisting your IP address for login pages on WordPress, WooCommerce or any CMS is one of the best security methods for protection from hackers. Most ISPs use dynamic IP addressing which means your IP address will change from time to time. This poses a convenience problem since you will be denied access to site served by nginx if … Learn more…
Suhosin hosted on github is a PHP security extension. Suhosin can protect you from insecure code and possible buffer overflows. Install Suhosin on your VPS or dedicated server only takes a few minutes and could protect you from poorly coded WordPress plugins. This tutorial was tested on Debian 7 (Wheezy), 8 (Jessie) and Ubuntu 14.04 … Learn more…