WordPress Security

In this module you will learn about WordPress security. You will configure WordPress login bruteforce protection with fail2ban, restrict sensitive URLs and setup rate limits using Nginx. You will write some helper scripts to determine bad actors from server logs, and quickly ban IPs or restrict URL patterns.

This lesson is brought to you by Cherry Servers: a wide range of dedicated and virtual servers at a great price, with fast delivery and outstanding 24/7 human support.

If you have a product or service that could be useful to our readers, sponsoring a lesson on WP Shell is a solid advertising opportunity. Click here to find out more.

Finally, you will install and configure the free Wordfence CLI utility for automatic vulnerability and malware scanning across all sites on your server.

Lessons in this module

• Security 101
• WordPress login bruteforce protection with Fail2ban
• Restrict sensitive URLs with Nginx
• Rate limiting with Nginx
• Finding bad actors from Nginx logs
• Banning IP addresses with Nginx
• Block URL paths with Nginx
• Vulnerability scanning with Wordfence CLI

Next module: Backups