Temporarily Turn off Modsec filtering

Turn Off Modsec

You can temporarily turn off Modsec filtering by adding a code snippet rule to your .htacces file, this can be helpful if you are triggering a number of rules which are false positives or you are unable to get the rules whitelisted whilst you do your development. Add into .htaccess <IfModule mod_security.c> SecFilterEngine Off SecFilterScanPOST…

Read More

Replacing the default ServerPilot Firewall with your own using UFW

serverpilot-custom-firewall

ServerPilot comes with a default firewall enabled when you connect to a droplet instance such as from Vultr or Digital Ocean, the only option you have from the ServerPilot control panel is to toggle if on or off. The actual firewall used is called UFW (uncomplicated firewall) which is a simplistic wrapper over the underlying IP…

Read More

Set Up LMD Maldet and ClamAV on ServerPilot and VULTR

malware-lmd-clamav-serverpilot-vultr

Set up a malware scanner with LMD Maldet and ClamAV on ServerPilot and an instance like Vultr or Digital Ocean. One of the key server malware scanners is Linux Malware Detect and works very nicely scanning any Linux distribution, it keeps an updated database of known malware exploits from an updated registry. The Linux Malware Detect tool can also integrate…

Read More

Changing the SSH Port in ServerPilot

serverpilot-ssh-port-firewall

ServerPilot comes with a default firewall which is enabled and comes in the form of a toggle in the ServerPilot control panel. The panel is a front for the ufw (uncomplicated firewall)  app which in turn is a front for ip tables but with a lower learning curve, by default the below rules are the…

Read More

Viewing and Changing WordPress Default Permissions

wordpress-file-folder-permissions

Many issues can go wrong if your WordPress default permissions have changed due to some unforeseen circumstance or a migration has gone bad due to some abnormal hosting environment. The default Linux permissions for most hosts WordPress sites are 644 for files and 755 for folders which is:  file is rw-r–r– folder is drwxr-xr-x For a file…

Read More

Set Up Let’s Encrypt SSL on cPanel WHM Server

ssl-lets-encrypt-cpanel-whm

The free SSL service Let’s Encrypt is now available to use on a cPanel/WHM service for versions above 58.0.17, this was announced recently on the feature requests component of the cPanel website. Checking your cPanel/WHM Version   Check if your version is above 58.0.17 by logging into your WHM interface and checking the top right. If…

Read More