Browsed by
Tag: Wordpress

Block WordPress login attempts when no WordPress is present

Block WordPress login attempts when no WordPress is present

I’ve set up LogWatch and saw these entries turning up every day. 404 Not Found /admin/wp-login.php: 2 Time(s) /administrator/index.php: 2 Time(s) /blog/wp-login.php: 2 Time(s) /section/wp-login.php: 2 Time(s) /site/wp-login.php: 2 Time(s) /wordpress/wp-login.php: 2 Time(s) /wp-login.php: 2 Time(s) /wp-login/: 2 Time(s) /wp/wp-login.php: 2 Time(s) /www.google.com/chrome: 1 Time(s) I decided to ban them using fail2ban, seeing as there is no reason to try and use a WordPress login, when there is no wp running on that server. I based this on https://github.com/miniwark/miniwark-howtos/wiki/Fail2Ban-setup-for-Apache. vi…

Read More Read More

A WordPress site secured with SSL and running on an nginx as a reverse proxy to an Apache

A WordPress site secured with SSL and running on an nginx as a reverse proxy to an Apache

Today I needed to transfer a WordPress site from one server to another. This proved more difficult then I tough. The new server is running an Nginx that serves as a reverse proxy to an Apache. The latter does, for example all the php stuff. It also serves only SSL pages and redirects all traffic on port 80 to 443. After a lot of “google’ing” and trial and error, this was what I needed to configure in the wp-config.php file….

Read More Read More