ServerPilot out of the box does not have a solution to deal with brute force attacks, it does have a sister company called Heatshield which rejects IP addresses that try and constantly connect to your site, you can also do the same with the opensource fail2ban. fail2ban is an app which bans access to your site… Read More
Set Up LMD Maldet and ClamAV on ServerPilot and VULTR
Set up a malware scanner with LMD Maldet and ClamAV on ServerPilot and an instance like Vultr or Digital Ocean. One of the key server malware scanners is Linux Malware Detect and works very nicely scanning any Linux distribution, it keeps an updated database of known malware exploits from an updated registry. The Linux Malware Detect tool can also integrate… Read More
Changing the SSH Port in ServerPilot
ServerPilot comes with a default firewall which is enabled and comes in the form of a toggle in the ServerPilot control panel. The panel is a front for the ufw (uncomplicated firewall) app which in turn is a front for ip tables but with a lower learning curve, by default the below rules are the… Read More
Viewing and Changing WordPress Default Permissions
Many issues can go wrong if your WordPress default permissions have changed due to some unforeseen circumstance or a migration has gone bad due to some abnormal hosting environment. The default Linux permissions for most hosts WordPress sites are 644 for files and 755 for folders which is: file is rw-r–r– folder is drwxr-xr-x For a file… Read More
Set Up Let’s Encrypt SSL on cPanel WHM Server
The free SSL service Let’s Encrypt is now available to use on a cPanel/WHM service for versions above 58.0.17, this was announced recently on the feature requests component of the cPanel website. Checking your cPanel/WHM Version Check if your version is above 58.0.17 by logging into your WHM interface and checking the top right. If… Read More
Stop Spam Subscriber Accounts Registering on WordPress
If you have been getting a bunch of unwanted new user registrations on your WordPress website and are wondering what they are and where they are coming from, with such bogus email addresses mostly from the gmail.com domain [email protected]’s just a bunch of automated spam, do not fear, here’s what to do! Spambots trawling through… Read More
Git and WordPress workflow for Local Development to Staging Webserver
This guide shows a Git and WordPress workflow and demonstrates version control using Git from a local development environment on OSX to a staging site webserver. For the Database control we will use WP Migrate Pro. A second remote repo for a production server would also need to be added in a real world scenario. This guide just… Read More
Migrate WordPress Site from Local Development to Live Server and fix serialized data issues
There are a number of ways to migrate a local development WordPress site from a test to a live server, you can to this manually or via a plugin. Migrating WordPress Manually The manual way to migrate a WordPress site to a live server is in a few steps: Copy the all the contents of… Read More