Security Blog
Useful information and technical details if you want to know more how to protect WordPress from modern threats effectively
Turn your WordPress into Fort Knox
This article assumes that we want to create a bulletproof protected website powered by WordPress. It’s not necessarily to do all the following steps word for word and point by point exactly as described. But I do recommend that if you want to create your own Fort Knox. Security Blog Traffic Inspector in a nutshell [...]
Limit login attempts without a plugin?
You can find plenty of comments and advice on that on the Internet. But is it real? WordPress Security How To Restrict access to WordPress REST API WordPress Security How To Traffic Inspector and logging how to Security Blog WordPress 4.7.3 – six security issues has been fixed Security Blog Do not trust those fake domain [...]
Hardening WordPress with WP Cerber
All suggested settings are highly recommended for most websites on the Internet. If you need, for some reason, these functions are being accessible from a particular computer or an IP network you can easily add them to the White IP Access List. Disable REST API The plugin restricts access to the WordPress REST API. The ability [...]
Know more about intruder’s IP
To enable retrieving, check option: Drill down IP. To view the information click on a particular IP address on the Activity tab. Technical details To get extra information like country, company, network info and abuse contact WP Cerber uses requests to a limited set of external WHOIS servers which are maintained by appropriate [...]
Plugin Inspector
Want to know more about plugins you have installed on your blog? The Plugin Inspector plugin is an easy way to check plugins installed on your WordPress and make sure that plugins do not use deprecated WordPress functions and some unsafe functions like eval, base64_decode, system, exec, etc. Some of those functions may be used [...]
How to protect WordPress with Fail2Ban
By using WP Cerber Security and Fail2Ban together you can reinforce protection at the most effective level. That allows you to protect a WordPress from brute-force and DoS attacks at the OS level with iptables. Read more about attacks: Brute-force, DoS, and DDoS attacks – what’s the difference? Note: you have to have the root [...]
Hardening WordPress with WP Cerber and NGINX
NGINX is a free, open-source, high-performance HTTP server. WP Cerber is a free, open-source, security plugin which protects WordPress powered sites from intruders and hackers. How to hardening WordPress using WP Cerber and NGINX together First of all, you need to set up a Custom login URL and check Block direct access to [...]
How to find hidden entrance on a WordPress site
Let’s say you decide to hide your WordPress login page and wp-admin dashboard from hackers by hiding these pages with some tools or tricks. Do you think that it really works? Nobody knows your secrets? Don’t be so naive. You can easy to find login and dashboard pages with the following tricks. Just try it on your [...]
Migrating from Limit Login Attempts
If you have Limit Login Attempts is installed and now ready to switch more reliable and powerful solutions like WP Cerber you can do it in several clicks.
Alternative to Limit Login Attempts plugin?
WP Cerber is the best possible alternative and drop in replacement for Limit Login Attempts plugin with a bunch of security features