Website administrator at WP/Woo
45 USD Here is the current problem: https://www.loom.com/share/806e126b74e94176927eb98d26ccd0b1
Ideally, I’m looking for a person who would administer the entire network of customer websites.
Attention, I am looking for a person who will first be able to explain and set the same accounts on Ukraine. And already then you can offer separate VPSs, Docers, Clouds, etc.
1 Hosting
Displays errors.
Updated FTP Passwords
2 – Setup of sites
50% of the sites (that is woocommerce) on litespeed + litespeed cache + redis.The other half of the shops + static sites on apache + supercache or php-fpm + w3.- installed the plug-in from sucuri, passed the check list
Add this code to functions:
remove_action( 'wp_head', 'rsd_link' );
remove_action ('wp_head', 'wp_generator');
remove_action ('wp_head', 'wlwmanifest_link');
Disables of XML-RPC
add_filter( 'xmlrpc_enabled', '__return_false' );
function disable_x_pingback( $headers ) {
unset( $headers['X-Pingback'] )
return $headers;
The
add_filter( 'wp_headers', 'disable_x_pingback' );
add_filter( 'xmlrpc_methods', function( $methods ) {
unset( $methods['pingback.ping'] )
The return of $methods.
) ;
I have these rules in .htaccess
RewriteRule ^(xmlrpc\.php♰wp-trackback\.php) - [F,L]
Reduce heartbeat twice by plugins from WP Rocket.In wp-config added the lines:define( 'DISALLOW_FILE_EDIT', true );
define( 'WP_POST_REVISIONS', 5 );
Your comments ?
Ось що зробив власними силами на даний момент:
1. хостинг
- вимкнув display errors
- оновив паролі фтп
2. налаштування сайтів
50% сайтів (ті що woocommerce) на litespeed + litespeed cache + redis.
Інша половина магазинів + статичні сайти на apache + supercache або php-fpm + w3.
- встановив плагін від sucuri, пройшов чек лист
- додав такий код в functions:
remove_action( 'wp_head', 'rsd_link' );
remove_action('wp_head', 'wp_generator');
remove_action ('wp_head', 'wlwmanifest_link');
// Disables XML-RPC
add_filter( ‘xmlrpc_enabled’, ‘__return_false’ );
function disable_x_pingback( $headers ) {
unset( $headers[‘X-Pingback’] );
return $headers;
}
add_filter( ‘wp_headers’, ‘disable_x_pingback’ );
add_filter( ‘xmlrpc_methods’, function( $methods ) {
unset( $methods[‘pingback.ping’] );
return $methods;
} );
i такі правила в .htaccess
<IfModule mod_rewrite.c>
RewriteRule ^(xmlrpc\.php|wp-trackback\.php) - [F,L]
</IfModule>
Зменшив heartbeat вдвічі плагіном від WP Rocket.
В wp-config додав рядки:
define( 'DISALLOW_FILE_EDIT', true );
define( 'WP_POST_REVISIONS', 5 );
Ваші коментарі?
Ось що пропонує sucuri для наших сайтів? Це можна налаштувати? Які можливі недоліки?
Client's review of cooperation with Mar'yan-Bogdan K.
Website administrator at WP/WooI am happy with work. I recommend it.
Freelancer's review of cooperation with Ihor Kit
Website administrator at WP/WooAll good, the person is pleasant in communication, I recommend to collaborate
-
2 days22 USD
340 12 2 2 days22 USD
Good day . Ready to set the security of the site. Experience is 15 years. Go to turn!
-
2 days45 USD
361 1 0 2 days45 USD
Welcome to!
The security of sites is of course not related to what sites, hosting or VPS are installed, but of course on VPS you can better isolate users from each other.
But in these conditions, everything can be arranged.
Looking at everything you’ve been infected with tabs, many websites have recently been infected with this on WordPress.
Experience in IT security, more than 9 years. Great experience of eliminating complex infections, on large projects. Also experience audits of the security of sites and servers on subject to vulnerabilities.
Experience in the administration of websites on various CMSs.
Write if you need a quality site accompaniment in terms of security and administration.
Lvov