Install and configure Fail2ban for CloudPanel on Ubuntu 22.04
CloudPanel out of the box comes with an application to deal with brute force attacks on SSH, NGINX and WordPress, only SSH has a configuration, the app is called Fail2ban. Fail2ban is an app which bans access to your site from IP addresses which are trying to login to your services such as SSH on port…
Read MoreSyncing RunCloud and Cloudflare firewalls for fail2ban IPs
This guide looks at adding a proxied Cloudflare service to a server set up with RunCloud and fail2ban with a WordPress jail conf set up. Once you start using Cloudflare as a CDN solution for your hosting, you are adding another firewall into the equation, albeit a very good one, but you may want to…
Read MoreTweaking RunCloud Servers After Deployment
Here are some references for various fix ups or tweaks that I apply to servers with a RunCloud control panel. These are not all done inclusively, depends on the need. Change root password You root password initially generated by your host provider might be on the weak side always best to change and strengthen it.…
Read MoreBlock wp-login.php and xmlrpc.php via fail2ban on RunCloud
How to ban IP addresses that are brute forcing your wp-login.php and xmlrpc.php on a WordPress install with fail2ban on a RunCloud server. Email yourself any fail2ban IP addresses. Add a WordPress fail2ban filter Create a wordpress.conf file in /etc/fail2ban/filter.d/ [Definition] failregex = ^<HOST> .* “POST .*wp-login.php ^<HOST> .* “POST .*xmlrpc.php ignoreregex = If using…
Read MoreAdding Cloudflare to the mix of ServerPilot and fail2ban
This guide looks at adding Cloudflare to a set up of ServerPilot and fail2ban with a WordPress jail set up. Once you start using Cloudflare as a CDN solution for your hosting, you are adding another firewall into the equation, albeit a very good one, but you may want to pass your servers local firewall…
Read MoreAdding WordPress to fail2ban on ServerPilot
Dealing with brute force attacks on WordPress is an issue that you would need to address, this guide looks at adding a solution for WordPress sites running on ServerPilot on a Vultr instance but can be also used on platforms from other providers such as Digital Ocean. Using fail2ban as a solution to brute force…
Read MoreInstall fail2ban for SSH on ServerPilot / Vultr Instance
ServerPilot out of the box does not have a solution to deal with brute force attacks, it does have a sister company called Heatshield which rejects IP addresses that try and constantly connect to your site, you can also do the same with the opensource fail2ban. fail2ban is an app which bans access to your site…
Read More