Whitelisting your IP address for login pages on WordPress, WooCommerce or any CMS is one of the best security methods for protection from hackers. Most ISPs use dynamic IP addressing which means your IP address will change from time to time. This poses a convenience problem since you will be denied access to site served by nginx if … Learn more…
CloudFlare is a pretty sweet free security, firewall and acceleration service that I use on all my WordPress sites. The old CloudFlare API is being retired shortly (November 2016, source). Since the CloudFlare v4 API is already live, I wanted to be prepared for the new API switch. I use fail2ban to protect my wp-login … Learn more…
Most tutorials for protecting wp-login.php for WordPress block users who are actually trying to make login attempts which makes logical sense. The problem with this method is that these brute force protection methods are still expensive for your web server. When a user tries to log in, PHP processing occurs and MySQL queries are made … Learn more…
Monit can be used to monitor your services on your VPS or dedicated server. You can use Monit to make sure MySQL (MariaDB, Percona etc) is always running in case it crashes because of bots brute forcing or it runs out of resources. Monit will check the MySQL process by looking at the unix socket it is … Learn more…
Webmin is fantastic free tool for managing your VPS or dedicated server. It has tons of modules to manage web servers like Apache or nginx (Webmin module), view logs, add cronjobs, manage updates and administer security like ConfigServer Firewall or fail2ban. This guide shows you how to install Webmin on Ubuntu using the official repository. It … Learn more…