Menu Close

Category: Security

With Let’s Encrypt on Ubuntu 18.04

At Apache Server (At NginX Server)

Let’s Encrypt is a Certificate Authority (CA) that provides an easy way to obtain and install free TLS/SSL certificates, thereby enabling encrypted HTTPS on web servers. It simplifies the process by providing a software client, Certbot, that attempts to automate most (if not all) of the required steps. Currently, the entire process of obtaining and installing a certificate is fully automated on both Apache and Nginx.

Ubuntu 18.04 – Firewall Setup

Setting Up a Basic Firewall

Ubuntu 18.04 servers can use the UFW firewall to make sure only connections to certain services are allowed. We can set up a basic firewall very easily using this application.

Different applications can register their profiles with UFW upon installation. These profiles allow UFW to manage these applications by name. OpenSSH, the service allowing us to connect to our server now, has a profile registered with UFW.

WP Security Audit Log: Keeping a watchful eye on your WordPress sites

WordPress is, without a doubt, the most popular website management system in use. The latest statistics put the number of websites running on WordPress over 60 million, and those include many popular news/media, company/brand, and personal sites.

Date : 2018-07-09T06:17:00.000Z
Source : https://www.helpnetsecurity.com/2018/07/09/wp-security-audit-log/

WordPress 4.9.7 Update Fixes Pair of Security Vulnerabilities

Millions of WordPress sites around the world were at risk from a pair of related file deletion vulnerabilities that potentially could have enabled an attacker to delete arbitrary files. A new version of open-source content management system WordPress, 4.9 …

Date : 2018-07-06T15:44:00.000Z
Source : http://www.eweek.com/security/wordpress-4.9.7-update-fixes-pair-of-security-vulnerabilities

What Is WordPress XML-RPC and How to Stop an Attack

XML-RPC is a remote procedure call protocol that allows anyone to interact with your WordPress website remotely. In other words, it’s a way to manage your site without having to log in manually via the standard wp-login.php page. It’s widely used by …

Date : 2018-07-05T20:18:00.000Z
Source : https://www.linuxtoday.com/security/what-is-wordpress-xml-rpc-and-how-to-stop-an-attack-180704080014.html

WordPress Security Plugins

Hackers want to get access to your website and use it to get backlinks from your site to improve their site’s PageRank or redirect your visitors to malicious sites or use your website to send spam and viruses or other attacks. These attacks can damage your reputation with readers and commentators if you fail to tackle it. It is not uncommon for some WordPress websites to receive hundreds or even thousands of attacks every week. However, by using the right security plugin, all attacks will be stopped on your WordPress website.